Web lists-archives.com

[Samba] new audit support in 4.9

I tried to set up the new audit support options so I put the following
line in the smb.conf file of all my ADDCs:
# Global parameters
        netbios name = ADDC-02
        realm = EXAMPLE.NET
        server role = active directory domain controller
        server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc,
drepl, winbindd, ntp_signd, kcc, dnsupdate
        workgroup = EXAMPLE
        interfaces =
        bind interfaces only = yes
        log level = 1 auth_audit:3 auth_json_audit:3
dsdb_password_audit:4 dsdb_password_json_audit:4 dsdb_group_audit:4

        path = /var/lib/samba/sysvol/example.net/scripts
        read only = yes

        path = /var/lib/samba/sysvol
        read only = yes

As you can see, I activated the log level. I tried it with log level 1,
2, 3, 4 and 5. But I only got outputs from auth_audit :-(. What else do
I have to do to see the changes to groups and the passwords?


Attachment: signature.asc
Description: OpenPGP digital signature

To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba