Centrify

Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-9515: DirectAudit Service is Visible on Configuration Panel After Using Default Install Parameters

Auditing and Monitoring Service ,   Authentication Service ,  

30 November,17 at 08:44 PM

Question:
  
After doing a default install of the Centrify Agent for Windows, the DirectAudit service is visible in the Agent Configuration Panel.  The documentation states that by default, auditing features are not installed. Why does the Direct Audit service appear in the Configuration Panel after a default installation?
   
User-added image


Answer:
  
In Suite 2017.2, DirectAudit is included in the default installation.  However, DirectAudit is NOT enabled and will not run as a service until it is configured.  If the DirectAudit is seen in the Configuration Panel without being configured, it's possible that the service is being enabled through Group Policy.

Use the Group Policy Management Editor to check for the Group Policy that enables DirectAudit.  The GP is in

Computer Configuration -> Policies -> Centrify Audit Settings -> Common Settings -> Installation
  
 
User-added image

 
The registry can also be used to verify that DirectAudit is enabled.  Using regedit.exe, check for the following registry key:
  
[HKEY_LOCAL_MACHINE\Software\Policies\Centrify\DirectAudit\Common\InstallionGuid]
  
User-added image

 
To remove the DirectAudit service from the configuration  panel, change the GPO that sets the DirectAudit Installation value to be either "Not configured" or "Disabled".  Then run gpupdate on the machine.  The DirectAudit service is removed from the Centirfy Agent Configuration Panel.

The documentation issue will be addressed in a future release.
 

Related Articles

 articleKB-20210: Common Questions Regarding Centrify DirectControl and CoreOS article[HOW TO]Install and setup the Centrify Licensing Service articleKB-6041: How to show current license type in use by adclient articleKB-6040: How to change the license type in use after adclient successful joined to the AD? articleKB-7555: Unable to login as root after upgrade to Centrify Suite 2016 (CDC 5.3.0) articleKB-3925: How to add Centrify parameter to a group policy articleKB-6073: How to join the Linux/Unix Centrify Server to Active Directory with specific Computer Role? articleKB-6056: How to report the group policy settings that are in effect for the local computer? articleKB-6044: How to configure users for automatic Kerberos Credentials for infinite renewal even after users have logged out?