Has anyone successfully managed to poll security logs from a non Active Directory server with Orion UDT?
We've got about 8 Active Directory servers which are auditing logon and logoff events and generating alot of data which we'd like to avoid.
Instead, we would like to create a rule on the active directory servers to forward these specific events to a dedicated server, then tap in to that dedicated server and collect accumulated logs from the 8 Active Directory servers.
Any experience to share?
Is it doable?
Thanks in advance.