Centrify

Centrify normalizes Centrify events and enables you to analyze the data using pre-set dashboard views.

Release Details

Version: 5.1.0

Release date: April 26, 2024

Supported On: Logpoint v7.4.0 or later for log source template

SHA 256: 23710e8e3866776fd51446ed3585ac0c01e02df41e002c8d52da08bb49b06242

Download

Package Details

Centrify components:

Dashboard Packages
- LP_Centrify Audit Events Overview
- LP_Centrify Unix Audit Events
Compiled Normalizer
- CentrifyCompiledNormalizer
Report Packages
- LP_Centrify Audit Events Overview
- LP_Centrify Unix Audit Events
Label Package
- LP_Centrify

Enhancement

Description	Issue ID	Reference ID
Added Syslog Collector based Centrify log source template, simplifying the log source configuration process. To learn more, go to Creating Log Source via a Template.	KB-22712	-

Installation

To install Centrify:

Download the .pak file from the Download link above.
Go to Settings >> System Settings from the navigation bar and click Applications.
Click Import.
Browse to the downloaded .pak file.
Click Upload.

Past Releases

Centrify v5.0.1

Release Date: May 17, 2018

Supported On: Logpoint 6.7.0 or later

Download: Centrify_5.0.1.pak

SHA256: 9dcc41647dc8ab392f9b372010a065b4f977163e896e26c8ff75468201412174

Enhancement

A minor update has been done in the Centrify's normalizer for better signature handling.

Screenshot

Supported Device

Centrify Server Suite 2017

Expected Log Format

Key=value pair separated by space

Log Sample

Oct 27 09:07:18 sol112x64v3 adclient[5640]: [ID 702911 auth.info] INFO AUDIT_TRAIL|Centrify Suite|Mxx|1.0|100|Mxx challenge succeeded|5|user=abc1(type:ad,abc1@logpoint.com) pid=6160 utc=1540636545 centrifyEventID=54100 DAInst=AuditingInstallation DASessID=xxxxxx-xxxx-44ff-a5f6-d3f53f09bbji7 status=SUCCEED service=sshd tty=ssh client=::1 challenge=EMAIL

To export data to Logpoint, use Syslog collector on port 514 on the Logpoint server.

Centrify v3.2.0

Release Date: May 14, 2020

Supported On: Logpoint 6.0.0 to 6.6.6

Download: Centrify_3.2.0.pak

SHA256: 13b23622ee9fdad0e55168a22757452d429bb5d2d80c74a7be1eeec01814f98a

Enhancement

A minor update has been done in the Centrify's normalizer for better signature handling.

Support

If you have any questions or require assistance, create a support ticket.

Centrify

Package Details

Enhancement

Installation

Past Releases

Centrify v5.0.1

Enhancement

Screenshot

Supported Device

Expected Log Format

Log Sample

Centrify v3.2.0

Enhancement

Support

Comments

Related articles