For Login to the ESM - go to the ESM Properties - then to the 'Login Security' link on the left navigation - go to the 'Active Directory' tab - click 'Add' then give it a Friendly Name, click 'Add' again to define which AD Server to query, providing an IP Address and Port information. Once you enable AD authentication, the only 'Local user' that is allowed is the NGCP account.
Once AD is setup, go back to the ESM Properties, then go to 'Users and Groups' and 'Add' Group names that you want to map privileges to.
For Asset Management - click on the 'Asset Manager' icon in the upper right corner of your ESM screen - click on the 'Asset Sources' tab - select a location to pull your domain information from (max of 1 domain per location - ESM, Receiver, etc...) - click 'Add' and provide the necessary information to query AD including an AD account (preferably a service account with a password that will not change often).
For Profile Management - go to the ESM Properties page and select 'Profile Management' from the left navigation area - click 'Add' - profile type > 'Data Source' - Profile Agent > Windows - the provide a Profile name, username and password, and define which logs to pull > 'APPLICATION,SECURITY,SYSTEM'
We also had our Domain Admins enable Print Logging so for our Print servers we have a different profile which also pulls the print logs > APPLICATION,SECURITY,SYSTEM,Microsoft-Windows-PrintService/Operational
If you are also enabling Power Shell logging, or other things like SCOM logs, you can pull those as well.
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.