Category
제품 버전
항목
하위 항목
Installing Change Auditor agents using third party tools via msiexec (4378145)
Installing Change Auditor agents using third party using msiexec with adding parameters such as username, domain, password, etc., during the installation ... Third party tool used for installation is BigFix in this scenario.
Change Auditor agent is not using ASLR (Address Space Layout Randomization). (4372228)
Change Auditor agent on the Active Directory domain controllers was not configured to make use of address space layout randomization (ASLR) exploit mitigation technology. ... Should a memory corruption vulnerability be discovered in the affected application, it would be easier for an attacker to devise a workable exploit in the absence of ASLR.
License Questions on Seats, metrics and how license works Seats Licensed vs Seats used (4372577)
What is the difference between seats licensed and seats used as per enabled user account license metric?<br><br>Also, please confirm if we can use same license to configure change auditor in test environment if seats used exceeds the limit of seat licensed.<br><br>How are seats used counted, via human user count or overall accounts in a domain.
Does Change Auditor support IIS .NET Trust Levels? (4372399)
When using any other options other than "Full (Internal)", the Web Client fails to load.<br> Full Trust is a requirement, no other trust level will work with the Change Auditor web-client.
Lsass dump creation (4373401)
we would like to confirm how the lsass dump is performed? ... If done via standard windows way, via werfault.exe, there are built-in mechanisms making sure that secrets are removed from the lsass dumps.
Javascript library versions and other third party components (4372850)
What versions of the following javascript libraries are used with version 7.3?<br>Angular.js<br>Angular.min.js<br>Automapper<br>Backbone.js<br>Boost jQuery<br>Query-UI You can check all 3rd party components from the Legal Notices<br><br>From the windows client go to Help > Legal Notices
SLA and OLA for Quest change auditor (4371921)
We need to know what is SLA and OLA for Quest change auditor tool We have the following documentation on the website<br><a href="https://www.quest.com/legal/license-agreements.aspx" target="_blank">https://www.quest.com/legal/license-agreements.aspx</a><br><br>And also Service Request Severity Levels and Response Times<br><a href="https://support.quest.com/essentials/support-guide" target="_blank">https://support.quest.com/essentials/support-guide</a>
Change Auditor ODBC driver Support (4371973)
We would like to update the ODBC Driver on our Cluster from 17.10.3.1 to 18.2.2.1. ... Does Change Auditor accesses it’s SQL Database over the ODBC API and if so, would the upgrade to V18.2.2.1 be supported?
Implement CVE 2022 37967, CVE 2022 37966 e CVE 2022 38023 (4371845)
Implement the CVE 2022 37967, CVE 2022 37966 and CVE 2022 38023 and would like to understand the impacts:<br><br><strong>CVE 2022 37966</strong><br>Switching from RC4-HMAC to AES Kerberos encryption<br><br><strong>CVE 2022 37967</strong><br>Signature update to the Kerberos PAC<br>Increase domain Functional lever to 2008<br><br><strong>CVE 2022 38023</strong><br>Disable RPC Signed NTLM in favor of RPC Sealing<br>RC4 encryption disables<br><br> Those are all supported by Change Auditor as long as you are on a supported version.
Change Auditor MS SQL requirements (4371721)
What versions of SQL server is compatible with 7.3?
Smart alert query (4370923)
Could I setup a smart alert in order to alert us should a high number of GPO's get deleted? ... We recently experienced all our GPO's being deleted from one of our domains. ... I would like to see what Change Auditor could do to alert us to that in the future.
Does Change Auditor for AD version 7.2 or 7.3 Support SQL 2022? (4371176)
SQL 2022 support is slated for support in version 7.4 of CA
What is the impact on Change Auditor when a Windows OS or SQL Server patch or vulnerability mitigation is implemented? (4378896)
In a situation where a Windows OS or SQL Server patch or vulnerability mitigation is implemented, how is this going to impact Change Auditor components? ... Generally speaking, Quest applications are agnostic to any Windows Server patch or vulnerability mitigation unless it points to a specific application component (such as a DLL file within the installation path), in which case we would have to investigate internally further by opening a support case.
Timestamp issue in some SIEM endpoints after upgrading to Change Auditor v7.4 (4378188)
Incorrect time in some of the SIEM endpoint after upgrading from v7.3 to v7.4 is a defect. ... We have a Defect ID listed below for the same. ... They are in the roadmap and the product team is reviewing them for consideration in a future release.
Change Auditor Redundancy (4300281)
It is inherently built-in and there is nothing to configure. ... Each component in the Change Auditor architecture is specifically designed with high availability (FT/FailOver) as a goal. ... There is only one SQL Database, which is typically hosted on a Microsoft SQL server cluster.
Agents are showing as Inactive in the Change Auditor Client (4255529)
Agents are not connecting to the Coordinator and show as Inactive in the Agent Statistics. ... <p>Review the ChangeAuditor.AgentLog.nptlog and the AgentServiceProxy.Log.nptlog files for errors and warnings.
What ports are required to run ChangeAuditor Agent through firewall? (4237966)
What ports are required to run ChangeAuditor Agent through firewall? ... There are two options to deploy a ChangeAuditor Agent to a firewalled machine. ... Manually install the agent (likely the preferred method) - This can be done by copying the agent MSI (located in the extracted downloaded files \installation\msi folder) to the target server and install the file manually
How do I stop alerting on failed events? (4225241)
Alerts are emailed for failure and success events. ... You can remove result types from being alerted by the alert-enabled search. ... The following are steps for removing the Failure result type from an existing alert-enabled search.
Access Denied error when creating or editing an Active Directory Protection Templates (4294248)
The user account is a member of the ChangeAuditor Administrators security group. ... If the user clicks OK on the error message, they can continue to work with the Protection Template. ... The logged-on user does not have enough rights to query all AD objects and attributes (including flags) when configuring or editing a Protection template in the ChangeAuditor client.
Are there any errors in the logs would indicate the Coordinator has lost its connection to the database? (4255526)
Can the Coordinator log be used to determine if the Coordinator no longer has a connection to the database? <div>The Coordinator logs will show warnings and errors similar to the following when the Coordinator looses connection to the SQL server:</div><ul><li>A connection was successfully established with the server, but then an error occurred during the pre-login handshake.
Request to add additional Group Policy Event Classes to Change Auditor (4378855)
A client has reported that they can see changes in Group Policies getting captured, but these events only show the version changes. ... Request to add below Group Policy Event Classes to Change Auditor, so it can be identified immediately what type of group policy event class got changed.
Error message when installing a term license (4372294)
Error when installing the license Seats licensed show incorrect value of -1 ... Version in use is an out of support version, 7.0.1 in this case. ... Upgrade to the latest 7.3 fixed the issue.
Archive Database Connection error (4372388)
The client version and the coordinator version is 7.5. ... When we try to connect to an old CA DB which was created using 7.4 version of Change Auditor, we are getting an error as below This error we are getting when the application is trying to update the database.
How to set trace memory and processor issues, setting performance counters with perfmon (4372213)
Processor -> % Processor Time<br> <img src="https://prod-support-images-cfm.s3.amazonaws.com/KB_kA06R0000007QmjSAE_rtaImage (3).jpg" alt="Image3" title="Image3"></img> <br>5. ... For the next three items, select the specific process you want to monitor from the "Instances of selected object" section.<br>6.
Azure events collection stopped (4371558)
Contact Me By: Email<br> the client secret for the app was expired Generate a new secret fixes the issue.
신제품 조합