Hello,
For somme sensitive environments, we would need a legal security logging (traceability).
Objectives:
– Record events to detect security incidents.
– Be able to check if environments have been compromised
– Get informations for forensic
Example of needed info:
– Who ? User Id
– When ? Date
– From where ? source IP address
– To where ? destination IP address
– Protocol ?
– Authentication failures
– Settings modified by admin (date, name of the modified parameter…)
How can we get such info with NoMachine ?
Is !M cloud solution mandatory ?
How can we collect these infos and send them to a SIEM ?
Do you have the list of events and infos that can be logged ?
Thanks,
Steve.