LDAP登录历史记录 [英] LDAP Logon History
问题描述
是否可以通过LDAP知道用户的登录历史记录?到目前为止,我正在尝试找到一种方法,我只能获取lastLogon和lastLogout.
Is it possible to know the login history of a user through LDAP? I'm trying to find a way bit so far I can only get the lastLogon and lastLogout.
此致,
埃尔卡斯
Regards,
Elkas
推荐答案
这取决于LDAP后端. 您放置了Windows-server-2008标记,所以我希望您的意思是MS Active Directory或AD-LDS实例(也称为ADAM). 如果是这样,则可以在LDAP服务器(DC)上查询安全事件日志,如果安全审核处于启用状态(默认情况下处于启用状态). 您将需要很高的权限才能执行此操作,因此,首先请域管理员授予此权限. 您可以忘记使用PHP,或者找到一些pecl包来读取Windows事件日志记录.
It depends on LDAP backend. You put windows-server-2008 tag, so I expect you mean MS Active Directory or AD-LDS instance (aka ADAM). If so, you can query security event log on LDAP server (DC), if security auditing is on (as of default is on). You will need pretty high privilege to do this,so first ask domain admins to grant this permission. You can forgot for PHP or maybe you find some pecl package to read windows event log records.
如果您能够读取安全事件日志,则需要过滤掉很多数据,例如登录类型(您将对网络登录感兴趣). 但是,取决于域控制器的负载和AD中活动用户帐户的数量,这将花费大量时间.
If you will able to read security event log, you need to filter out lot of data like logon type (you will be interested in network-logon). However, depends on load of domain controller and number of active user accounts in AD, it will take lot of time to do this.
这篇关于LDAP登录历史记录的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!