I thought I'd start a new thread on this topic since it came up as a
sub-topic on another thread.

So it seems right now there are two ways to audit eDirectory events in
Sentinel. You can either use the old tried and true AuditDS components,
carried over from the old Novell Audit days, or you can use the newer
XDAS audit modules via syslog. I have used both myself and I just
thought moving forward, I should always try and use XDAS/syslog. But it
seems that it might not be that clear cut.

So what are the pro/cons to each? Is there a preferred choice? What
should be used going forward, especially on a new "green field"



matt's Profile: https://forums.netiq.com/member.php?userid=183
View this thread: https://forums.netiq.com/showthread.php?t=57314