This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Mark_Edwards
Explorer
‎2020-08-20 03:42 AM

scv logging

Hi,

Recently implemented SCV to check if VPN user's computers are domain joined.

This is working and non-compliant users get the warning message.

At the moment it is set to Allow and log. 

The SCV Registry Monitor policy definition is also configured to log (send_log =alert).

The issue is I can't find where this is logged on SmartConsole (R80.30)

I know that the non-compliance is only logged once but I should still be able to see it.

It could be that I'm just filtering/querying the wrong thing.

In Endpoint compliance I don't see anything either. 

Any suggestions?

Thanks

0 Kudos
Reply
3 Replies
PhoneBoy
Admin
Admin
‎2020-08-20 06:42 AM

SCV is a little different than Endpoint Compliance though it serves the same function.
I would expect the logs to appear as part of VPN/Remote Access and not necessarily Endpoint.

0 Kudos
Reply
Xavier_FIQUET
Participant
‎2020-09-10 05:45 AM

add the same issues there . if user has already authenticated months ago, you must look for the first time event since it will never be logged again ... we are thinking on asking for a RFE to get each time the scv logs whatever the results.

0 Kudos
Reply
Yashwanth_Katu1
Explorer
2 weeks ago

We have configured SCV recently and we are facing the same issue. our smart console is on R80.30. FYI: we are seeing the logs on the "Endpoint Compliance blade"

Also, we are seeing user as default in the MLM for non-compliant users. Any way we can resolve this issue?

any suggestions? 

0 Kudos
Reply