[help] splunk and auditctl 1.5.2

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I am trying splunk with auditctl 1.5.2 on CentOS 5 and cannot figure out how to get splunk to display the audit logs in ausearch -i mode (converting the encoded date/time stamp to human-readable). 

Thanks for any insights.

Scott

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

[Index of Archives]     [CentOS]     [Kernel Development]     [PAM]     [Fedora Users]     [Red Hat Development]     [Big List of Linux Books]     [Linux Admin]     [Gimp]     [Asterisk PBX]     [Yosemite News]     [Red Hat Crash Utility]

  Powered by Linux