Hi Igor.Ilyin,
Please assist me for gathering the below listed event id in Intrust 11.3. These are new event id's which are related to azure self service password reset.
In my domain controller these events getting comitted regularly. I want to gather these logs and store it in repository for futrure audting purpose.
I dont want to touch existing gathering jobs. I want to new create new gathering job, scheduled task,policy for collecting these logs.
PasswordChangesValidated | 10014 |
PasswordSetsValidated | 10015 |
PasswordChangesRejected | 10016 |
PasswordSetsRejected | 10017 |
PasswordChangeAuditOnlyFailures | 10024 |
PasswordSetAuditOnlyFailures | 10025 |
PasswordChangeErrors | 10012 |
PasswordSetErrors | 10013 |