Publishing Installation Information

Delinea Audit & Monitoring Service publishes installation information to a service connection point (SCP) object in Active Directory so that audited computers and collectors can look up the information. If the published locations for multiple SCPs in the same installation are not the same, or if collectors cannot read from at least one of the published locations, the collectors are unable to determine which audit store is the best match for the sites and subnets, and so they do not attempt to connect to an audit store.

Permission to Publish to Active Directory

Only administrators who have been delegated permission to modify various attributes of the installation can publish those attributes to Active Directory.

At a minimum, you must have the Active Directory permission to Create serviceConnectionPoint objects on the container or organizational unit that you have identified for publishing installation information.

If you do not have Active Directory permission to modify the installation, the updates are kept in the audit management database, and a message is issued to notify you that the installation information could not be updated in Active Directory.

Synchronizing Installation Information

If you have an Active Directory account with permission to publish information about the installation, you can update the service connection point.

To publish the service connection point for an installation:

  1. Open Audit Manager.

  2. Select the installation name, right-click, then click Properties.

  3. Click the Publication tab, then click Synchronize to publish the information.

    In a multi-forest or DMZ environment, this tab lists multiple Active Directory locations to which to publish.

  4. Click OK to close the installation properties.

Exporting installation information

If you have an Active Directory account with permission to access installation information, you can export the service connection point that contains the installation information to a file in LDAP Data Interchange Format (LDIF). Exporting installation information can be useful if you want to add the domain for a perimeter network to an existing installation. After exporting installation information to a file, you can modify the file—for example, to use a different domain component—then import the modified file using the ldifde command.

To export and import installation information:

  1. Open Audit Manager.

  2. Select the installation name, right-click, then click Properties.

  3. Click the Publication tab.

  4. Select the Active Directory location, then click Export.

  5. Select a file location and type a file name, then click Save.

  6. Click OK to close the installation properties.

  7. Use a text editor to modify the file, as needed.

    For example, you might use a different domain component—such as DC=dmz1,DC=ajax, DC=org in place of DC=internal, DC=ajax, DC=org—to differentiate between the perimeter and internal networks.

  8. Import the modified file using a command similar to the following in a Command Prompt window:

    ldifde -i -f C:\Users\Administrator\Desktop\sample-dmz.ldif