David Day

Total activity 14
Last activity July 28, 2021 12:58
Member since August 04, 2019 02:44

Following 0 users
Followed by 0 users
Votes 1
Subscriptions 4

Activity overview

Latest activity by David Day

David Day commented, July 28, 2021 12:58
Figured it out. My initial list of attributes was: member; memberof That pulled the members (member) of groups but not the groups that users were in (memberof), so I tried: member; memberOf Again,...
- View comment
- David Day
- July 28, 2021 12:58
- 0 votes
David Day commented, July 27, 2021 14:31
I am now receiving the member attribute under Groups, however, I am still not seeing the memberof attribute under users. I tried both memberof, and memberOf in the attribute list. Again, this is...
- View comment
- David Day
- July 27, 2021 14:53
- Edited
- 0 votes
David Day commented, July 22, 2021 14:02
I have added the member attribute for groups and the memberof attribute for users to get this information but according to the Sumo documentation the Security Groups to which the employee is assign...
- View comment
- David Day
- July 22, 2021 14:02
- 0 votes
David Day created a post, July 21, 2021 15:39
Active Directory Users and the Groups the are Members of?
1. Community
2. Sending Data
I setup the new Windows Active Directory Source and am pulling the Active Directory data into Sumo. We have built some nice queries to pull users, groups, etc. from the AD schema. However we are ...
- David Day
- July 21, 2021 15:39
- 1 follower
- 3 comments
- 0 votes
David Day commented, November 07, 2019 16:27
I performed a test yesterday in an attempt to pull Windows Event logs from non-domain joined systems located in our DMZ. This was a test in order to not have to use the specific machine name in th...
- View comment
- David Day
- November 07, 2019 16:27
- 0 votes
David Day created a post, October 22, 2019 15:03
Windows Event Logs on standalone server
1. Community
2. Using Sumo Logic
I have several servers in a DMZ that are not part of a domain. Domain is a required field for the Windows Event Log source for remote capture. Is there a way around using a domain name? Thanks.
- David Day
- October 22, 2019 15:03
- 2 followers
- 3 comments
- 0 votes
David Day commented, October 18, 2019 18:15
I really like this query, even better than the one I found that did a count of the logs with a time difference. What would be great is if there would be a way to also include the count of logs. T...
- View comment
- David Day
- October 18, 2019 18:15
- 0 votes
David Day commented, August 05, 2019 13:08
Graham, Thanks. That was exactly what I was looking for.
- View comment
- David Day
- August 05, 2019 13:08
- 0 votes
David Day created a post, August 04, 2019 02:44
List of unique sourceHosts in a sourceCategory
1. Community
2. Using Sumo Logic
I am trying to get a list of IP addresses that are reporting to a particular sourceCategory. I have tried several options and the best I can come up with is: _sourceCategory=prod/network| count_f...
- David Day
- August 04, 2019 02:44
- 2 followers
- 2 comments
- 0 votes