Can you please any one help me on this how to configure the alert for AD Azure password protection sperately in solarwinds
pleases help me.
We use Security Event Manager (SEM) and pull all of DC logs. From there, Solarwinds developed a connector for Azure AD Password Protection, the you need a local policy change to create a log file SEM can read.
They just fixed the connector on March 17th so I haven't had time to generate and test alerts yet, but my plan is to have emails sent when the event IDs match the following:
|Fail (due to customer password policy)||10016, 30002||10017, 30003|
|Fail (due to Microsoft password policy)||10016, 30004||10017, 30005|
|Fail (due to combined Microsoft and customer password policies)||10016, 30026||10017, 30027|
When i configure everything on my end, I should be able to share, these are my thoughts right now.
SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 150,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.