UNIX Agent Settings

Use the group policy under UNIX Agent Settings to set auditing configuration options.

Add centrifyda.conf properties

Use this group policy to specify any configuration parameters you want to add to the centrifyda.conf configuration file. You can specify any configuration parameter name and its value by using this group policy.

To use this group policy:

  1. Double click the policy in the right pane of the Group Policy Management Editor.
  2. On the Policy tab, select Enabled.
  3. Click Add, type a property name and a property value, then click OK.

    For example, to change the configuration parameter autofix.nss.conf from the default value of true to false, you would type the following:

    • Property name: autofix.nss.conf

    • Property value: false

  4. Repeat Collector Settings for each configuration parameter you want to set until you are finished adding property values, then click OK.

In typing property names and values, you should note that the agent does not perform any validation or error checking. If you specify an invalid property name or value, the parameter and value are added to the configuration file as entered. In most cases, invalid parameter names are simply be ignored. However, an invalid parameters value might cause unexpected problems when the auditing service runs.

Additional group policies for UNIX Agent Settings are organized under the following sub‑nodes:

  • DirectAudit Daemon Settings—Contains policies that pertain to the auditing service dad process. See DirectAudit Daemon Settings for details about the policies in this sub-node.
  • DirectAudit NSS Settings—Contains policies that pertain to authentication requests that are processed or ignored by the Centrify name service switching (NSS) module. See DirectAudit NSS Settings for details about the policies in this sub-node.
  • DirectAudit Shell Settings—Contains policies that pertain to the audited shell (cdash). See DirectAudit Shell Settings for details about the policies in this sub-node.
  • LRPC2 Client Settings—Contains policies that pertain to LRPC2. See LRPC2 Client Settings for details about the policies in this sub-node.
  • Spool Disk Space Settings—Contains policies that pertain to offline database settings. See Spool Disk Space Settings for details about the policies in this sub-node.

Enable DirectAudit session auditing properties

Use this group policy to enable and disable DirectAudit session auditing.