Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1018
  • Last Modified:

Forefront - central change tracking

How can I export the Change Tracking logs from Forefront TMG 2010 in to Splunk?
0
timbrigham
Asked:
timbrigham
  • 3
1 Solution
 
Keith AlabasterEnterprise ArchitectCommented:
Wow - and you want our help asking like that?
0
 
timbrighamAuthor Commented:
Fair enough. I was hoping a canned solution (script, 3rd party log parser, etc) was available and I simply hadn't come across it. I didn't think off host storage of audit logs was that unusual of a desire.

I'm familiar with how the data is stored in the registry and some options for scripting the content into an XML file. If I really had to I could get something set up that periodically parses the XML, performs a diff against an old version of the file to find new events and shoots the diff to a text file to be imported via a generic agent.

That just seems a horribly clunky solution to what I thought would be an easy task; is there any easier way to address this?
0
 
timbrighamAuthor Commented:
We developed an in house solution.
0
 
timbrighamAuthor Commented:
Developed in house solution.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now