Could someone suggest me for this. I waana get the domain arrtibute inthe mwg policy. what policy artibute that i have to use. for example i want to allow client authen with full user " domain\user"
and want to user domain\user in mwg rule. can i do that caz mwg only see the user not domain
Add a rule like this right after your authentication rule.
Name:Prepend Realm\ to Username
Comment:Puts the domain name in front of the user name
Rule Criteria:Authentication.IsAuthenticated equals true AND Authentication.Realm does not equal ""
Events:Set Authentication.UserName = Authentication.Realm + "\" + Authentication.UserName
This will put domain into the logs:
It can also be used for rules like:
Authentication.UserName is in list Exception #1: Users or Groups
Your policy help me a lot thank for that but do you have problem with web reporter caz after i use this rule web reporter cannot parse the log .
I'd have to see the entire log definition. There is probably a missing quote or the column headers have become mis-aligned.
The log should definitely import if the field is in the identical place.
Download the new ePolicy Orchestrator (ePO) Support Center Extension which simplifies ePO management and provides support resources directly in the console. Learn more about ePO Support Center
2821 Mission College Blvd.
Santa Clara, CA 95054 USA
Consumer Support | Enterprise Support | McAfee.com
Legal | Privacy | Copyright © 2019 McAfee, LLC