Enable logging of valid command execution in dzdo

Specifies whether you want to log messages for successful command execution.

By default, if this group policy is not configured, dzdo logs both valid and invalid command execution. Disabling it will cause dzdo to log only invalid command execution.

Note - these messages are written to the syslog auth (or authpriv) facility; that means that these messages (good and bad) typically go to /var/log/secure

This policy modifies the dzdo.log_good setting in the Centrify DirectControl configuration file.


Supported on:
Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Centrify\CentrifyDC\Settings\Dzdo
Value Namedzdo.log_good
Value TypeREG_SZ
Enabled Valuetrue
Disabled Valuefalse

Login scripts:

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Centrify\CentrifyDC\Settings\Dzdo
Value Name{number}
Value TypeREG_DWORD
Default Value

centrifydc_settings.admx

Administrative Templates (Computers)

Administrative Templates (Users)