Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-8123: How to use Microsoft Network Monitor to capture network trace?

Centrify DirectAudit ,   Centrify DirectControl ,  

23 February,17 at 03:06 PM

Applies to: All versions of Centrify DirectAudit

Question:

How to capture the network traffic between SQL and remote host?

Answer:

Microsoft develops a tool - Network Monitor for network traffic capture and protocol analysis.

Here is the download link.

https://www.microsoft.com/en-us/download/details.aspx?id=4865

Please find the correct version to download on the local Windows host and launch the tool. 

1, Click "Start Capture" to have a clean page opened for this task;

2, Click "Start" to start up the capturing process;

3, Try to replicate the issue and check on the node "lsass.exe";

4, On the right panel there are entries recorded between the current host and the remote destination. 

User-added image

Please click "Stop" with enough traffic captured at the end. 

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.