ACS Dashboard in OMS: Your Audit Report Highlights in a Glance

This post demonstrates how the OMS Log search queries listed in the mapping table for each ACS Audit Report can be used to drive visualizations for an OpsMgr Featured Audit Collection Services (ACS) Dashboard based on the security events collected by the Security and Audit Solutions in OMS Log Analytics. The ACS Summary Tile and Dashboard can… Read more

Leveraging OMS Log Search to Report on Dynamic Access Control Usage

In this post, we look at how we can leverage the Security and Audit solution in OMS and using log searches to retrieve records on Dynamic Access Control (DAC) usage based on the audit events the Audit Collection Services (ACS) in OpsMgr collects and reports on.In ACS, there are 3 new DAC SSRS reports available… Read more

Leveraging OMS Log Search to Report on User Logon and Object Access Events

In this post, we look at how we can leverage the Security and Audit solution in OMS and using log searches to retrieve records on user logon and object access based on the audit events the Audit Collection Services (ACS) in OpsMgr collects and reports on.In ACS, there are 4 Usage related SSRS audit reports… Read more

Leveraging OMS Log Search to Track Policy and Permission Changes

In this post, we look at how we can leverage the Security and Audit solution in OMS and using log searches to track changes in audit policies and account permissions based on the audit events the Audit Collection Services (ACS) in OpsMgr collects and reports on.In ACS, there are 4 Policy related SSRS audit reports… Read more

Leveraging OMS Log Search to Capture Audit Failures and Audit Log Tampering

In this post, we look at how we can leverage the Security and Audit solution in OMS and using log searches to capture audit failures and audit log tampering based on the audit events the Audit Collection Services (ACS) in OpsMgr collects and reports on. In ACS, there are 2 System Integrity related SSRS audit… Read more

Leveraging OMS Log Search to Analyze Security Events for a Specific Computer/User/EventID

 In this post, we look at how we can leverage the Security and Audit solution in OMS and using log searches to analyze security events collected for a specific computer, a particular user or an Event ID. In ACS, there are 3 Forensic related SSRS audit reports available out-of-the-box that allow the user to provide… Read more

Leveraging OMS Log Search to Help Planning and Tuning of Audit Policies

In this post, we look at how we can leverage the Security and Audit solution in OMS and using log searches to provide insights into the volume of security events collected to help plan and tune the audit policies accordingly. In ACS, there are 4 Planning related SSRS audit reports available out-of-the-box that allow the… Read more

Leveraging OMS Log Search to Identify Potential Access Violation Activities

In this post, we look at how we can leverage the Security and Audit solution in OMS and using log searches to identify potential access violation security activities based on the audit events the Audit Collection Services (ACS) in OpsMgr collects and reports on. In ACS, there are 2 SSRS audit reports available out-of-the-box that… Read more

Mapping ACS Reports to OMS Search Queries

This post features a table that shows the mapping between Audit Collection Services (ACS) SSRS reports and search queries used in OMS Log Analytics.In OpsMgr 2012, Audit Collection Services (ACS) provides a means to collect records generated by an audit policy and store them in a centrally managed database. It allows filtering and analyzing of… Read more