ACS (RedHat 6) Modules Management Pack

Microsoft.ACS.Linux.RHEL.6 :: 10.19.1138.0 (Management Pack)

This is the management pack to collect auditable syslogs from UNIX/Linux (RedHat 6) computer and write them to Security Event Log.

Summary

The Red Hat Enterprise Linux Server release 6 ACS Management Pack provides the means of collecting auditable syslogs from Red Hat Enterprise Linux Server release 6 Operating Systems and write them to the Windows Security Event Log.

Management Pack Elements

Classes (1)

 DisplayNameIDBase ClassAbstractHostedSingletonGroupExtensionAccessibility
Microsoft.ACS.Linux.RHEL.6.ACSEndPointRHEL 6 ACS EndpointMicrosoft.ACS.Linux.RHEL.6.ACSEndPointMicrosoft.ACS.Unix.ACSEndPointFalseTrueFalseFalseFalsePublic

Discoveries (1)

 DisplayNameIDTargetEnabled
Microsoft.ACS.Linux.RHEL.6.ACSEndPoint.DiscoveryDiscover Red Hat Enterprise Linux Server release 6 ACS EndpointMicrosoft.ACS.Linux.RHEL.6.ACSEndPoint.DiscoveryMicrosoft.ACS.Unix.ACSEndPointTrue

Rules (17)

 DisplayNameIDTargetCategoryEnabledAlert Generate
Microsoft.ACS.Linux.RHEL.6.Adding.GroupAdding Group (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Adding.GroupMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Adding.UserAdding User (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Adding.UserMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Adding.User.To.GroupAdding User to Group (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Adding.User.To.GroupMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Console.Login.FailedFailed Console Login (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Console.Login.FailedMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Console.Login.SucceededSuccessful Console Login (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Console.Login.SucceededMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Deleting.GroupDeleting Group (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Deleting.GroupMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Deleting.UserDeleting User (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Deleting.UserMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Deleting.User.From.GroupDeleting User from Group (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Deleting.User.From.GroupMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Password.Change.FailedFailed Password Change (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Password.Change.FailedMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Password.Change.SucceededSuccessful Password Change (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Password.Change.SucceededMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Ssh.FailedFailed ssh login (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Ssh.FailedMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Ssh.SucceededSuccessful ssh login (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Ssh.SucceededMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Su.FailedFailed su (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Su.FailedMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Su.SucceededSuccessful su (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Su.SucceededMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Sudo.FailedFailed sudo (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Sudo.FailedMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Sudo.InvalidInvalid sudo (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Sudo.InvalidMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse
Microsoft.ACS.Linux.RHEL.6.Sudo.SucceededSuccessful sudo (Red Hat Enterprise Linux Server 6)Microsoft.ACS.Linux.RHEL.6.Sudo.SucceededMicrosoft.ACS.Linux.RHEL.6.ACSEndPointEventCollectionTrueFalse