I am trying to chase down where the logs for Graylog itself are kept. Specifically I am trying to locate the audit logs for users that have accounts in Graylog. We are currently using LDAP against one of our Domain Controllers to authenticate. I want to find out when a user logged in. It would also be nice to be able to identify if any failed login attempts were made using local accounts.
-- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/0cfb6796-32d8-4175-8e77-52082d59d19c%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
