introduction
in previous article :
we have discussed how to install and configure on SCOM server and SQL DB
this article we will see how to configure ACS on windows OS client
Enable ACS Forwarders-client side
this section we will enable ACS forwarder on client side [windows OS ]
- By default when install SCOM agent à it automatically install ACS forwarder but disabled
- We can manually enable ACS forwarder on client agent from services console ,
- but it recommended to enable it using operation manager console àmonitoring à operation MANAGER à agent details > agent health state > agent state[second page half ] > select one agent or more >> tasks of left pane à enable ACS forwarder >> provide credential if required à RUN à make sure that process has been deployed successfully
enable Audit Policy -client side
- On domain controller
- Create new GPO >> computer settings >> policies àwindows setting àsecurity settings>> local policy >> Audit policy >> configure policy settings
- to apply policy on client >> we can restart client or force GPO update
open Cmd >> gpupdate /force
Monitoring Audit clients
administrator now can use ACS report
for example > we can run report to check users logon
also we can run report to see unsuccessful login attempts
conclusion
in this article we have seen how to enable and run ACS on windows OS client
next article we ill see how to configure ACS for Linux OS [specifically Suse SLES ]
