Announcement

Collapse
No announcement yet.
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Tracking changes to director

    Is there a log file that keeps track of configuration changes made in shoreware director? Have an employee that supposedly made some changes and want to see what was done.

  • #2
    There is a Director Utilities Log file under c:\shoreline data\logs, but it is pretty cryptic. If you combine the timestamps of when they logged in, (Look in the Application Log on the windows box) and this file, you can come up with some idea of what they changed. It won't show the before/after data, but it will at least show you what pages they modified and clicked save on.

    Comment


    • #3
      Is there a syslog event filter that can be purchased somewhere to decipher this stuff? We have an audit issue now and not having plain english director change log is causing us a real headache.

      Comment


      • #4
        what is the exact name of the log file?

        Comment


        • #5
          Director-YYMMDD.HHMMSS.log

          Comment


          • #6
            Originally posted by mousenut View Post
            Is there a syslog event filter that can be purchased somewhere to decipher this stuff? We have an audit issue now and not having plain english director change log is causing us a real headache.

            Not that I'm aware of. Perhaps ShoreTel P.S could help on that one.. :whistling:

            Thanks,
            Jamie

            Comment


            • #7
              It's not secure, those text files can be modified at anytime. Anyone know of a solution for tracking all modifications to it?

              Comment


              • #8
                Don't give them write access to that text file. In fact, don't even give them access to the box unless they need reports, and in that case, use a limited user account.

                Comment


                • #9
                  You could always look into something like OSSEC which will monitor changes to files you specifiy..then you know when a chagne has been made. This however is not entirely trivial, but if you have the skills to do it in-house then it's a good tool.

                  Also if you need more accountability then don't let everyone use the admin account - create additional accounts for your admins. Way easier to track down..

                  Comment


                  • #10
                    did you ever find a solution for this? I am looking to audit changes as well

                    Comment


                    • #11
                      We used a product called in my last job called SAMS - highly effective in tracking everything. even to the point where your admins don't need to know the passwords to do stuff.

                      http://www.datatrackplc.com/remote-a...ucts/sams.html

                      might be that it's a step too far but works for RDP, web, ssh telent etc.

                      Comment

                      Working...
                      X