Tailing /var/log/secure

Hi all,

Is there a way for auditbeat to tail /var/log/secure logs in Centos? I am using cockpit and would like to see failed login attempts on my OAM side in Kibana. Is that possible?

I know this can be done by filebeat, but can it also be done by auditbeat to have all security logs in one place?


This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.