[INUG-Users] SSMs

[Jack Burgess]

And why doe sit say object server in the message, I get them constantly.

But I do not get any other messages 


------------------------------

Jack Burgess
NSA Services
Senior Enterprise Management Engineer
Office (781) 297-5300
Cell   (248) 495-0600
<mailto:jburgess at nsaservices.com> 


-----Original Message-----
From: users-admin at netcoolusers.org [mailto:users-admin at netcoolusers.org] On
Behalf Of Jacob Steinberger
Sent: Tuesday, May 25, 2004 2:02 PM
To: users at netcoolusers.org
Subject: Re: [INUG-Users] SSMs

I hate to break it to you, but it looks like it's working fine. The default
configuration tells the SSMs to only pick up on ERROR level events. That's
what it did (AUDIT_F(ailure) in security is also picked up on).

Jacob

> Anyone ever seen this message before??
>
> I am using SSMs (Demo) on a windows box, I can get traps for CPU and 
> so on, but nothing form the log files??
>
> Except this Audit failure?????
>
> OID1 = ".1.3.6.1.4.1.1977.9.4.1.1.2.4"
>
> OID2 = ".1.3.6.1.4.1.1977.9.4.3.1.3.4.27304161"
>
> OID3 = ".1.3.6.1.4.1.1977.9.4.3.1.4.4.27304161"
>
> OID4 = ".1.3.6.1.4.1.1977.9.4.1.1.10.4"
>
> 2_text = "2004-05-25 10:41:59,AUDIT_FAILURE,Security,565:Object Open:
> Object
> Ser
> ver: DS Object Type: %{bf967a87-0de6-11d0-a285-00aa003049e2} Object Name:
> %{01a2
> 3908-1af8-476d-a640-ef3c9e71eaf3} New Handle ID: - Operation ID:
> {0,243676812} P
> rocess ID: 264 Primary User Name: DC_OPS03$ Primary Domain: MIDDLESEX1 
> Primary L ogon ID: (0x0,0x3E7) Client User Name: EXOPS01$ Client 
> Domain: MIDDLESEX1 Client  Logon ID: (0x0,0xE863680) Accesses %%7688 
> Privileges - Properties: %%1538
> %%768
> 0 %%7681 %%7682 %%7683 %%7686 %{1131f6ac-9c07-11d1-f79f-00c04fc2dcd2} "
>
> 4_text = "NT Security Log"
>
> SNMP_Version = "1"
>
> enterprise = ".1.3.6.1.4.1.1977"
>
> .1.3.6.1.4.1.1977.9.4.1.1.10.4 = "NT Security Log"
>
> .1.3.6.1.4.1.1977.9.4.3.1.4.4.27304161 = "4"
>
> generic-trap = "6"
>
> community = "public"
>
> ReceivedTime = "1085496039"
>
> 1 = "*Security"