Guys
can splunk help monitor the access rights for the following files on a vmware vpshere server?
• etc/profile • /etc/ssh/sshd_config • /etc/pam.d/system-auth • /etc/login.defs • /etc/ntp • /etc/ntp.conf • /etc/passwd • /etc/group • /etc/sudoers • /etc/shadow • ./etc/vmware
Any takers for this yet?
Can you elaborate more on what you're trying to accomplish? Are you trying to find out when someone writes to these files? Are you just looking to record the log when someone changed something in VCenter?