How to exclude the Public Key Infrastructure (PKI) changes from being reported?

Active Directory
Reporting
6.5 and older
7.0-8.5
9.0-9.7
9.8
https://kb.netwrix.com/749
Copy Article URL Copied

How to exclude the Public Key Infrastructure (PKI) changes from being reported? 



For example: 
ms-PKI-AccountCredentials
ms-PKI-Certificate-Application-Policy
ms-PKI-Certificate-Name-Flag
ms-PKI-Certificate-Policy
ms-PKI-Cert-Template-OID
ms-PKI-Credential-Roaming-Tokens
ms-PKI-DPAPIMasterKeys
ms-PKI-Enrollment-Flag
ms-PKI-Enrollment-Servers
ms-PKI-Minimal-Key-Size
ms-PKI-OID-Attribute
ms-PKI-OID-CPS
ms-PKI-OID-LocalizedName
ms-PKI-OID-User-Notice
ms-PKI-Private-Key-Flag
ms-PKI-RA-Application-Policies
ms-PKI-RA-Policies
ms-PKI-RA-Signature
ms-PKI-RoamingTimeStamp
ms-PKI-Site-Name
ms-PKI-Supersede-Templates
ms-PKI-Template-Minor-Revision
ms-PKI-Template-Schema-Version
 


In order to exclude changes to these attributes from being reported please navigate to the Netwrix Auditor installation directory and add the following lines to the omitproplist.txt file: 

*.msPKIAccountCredentials 
*.msPKIDPAPIMasterKeys 
*.msPKIRoamingTimeStamp

etc..

Go Up