Hi guys, my first post here... 
I looked around but couldn't find what I want...
I run a zabbix server v2.2.2 installed on Red Hat Enterprise Linux Server release 6.5 (Santiago). I have around 1400 hosts with 53000 items. Out of these hosts, around 400 are Linux (RH5 and RH6 all x64). All these linux hosts are running agent version 2.2.6.
I want to monitor the ssh logins in each server but I have no clue how can I implement this in zabbix or if it's even possible....
I want to use the command last -w and have some output of some sort, either list or graph, or grep the /var/log/secure for "Accepted publickey for" & "Rejected publickey for" and eventually, when the grep finds Rejected, to trigger me a message...
Thanks for all your input....
I looked around but couldn't find what I want...
I run a zabbix server v2.2.2 installed on Red Hat Enterprise Linux Server release 6.5 (Santiago). I have around 1400 hosts with 53000 items. Out of these hosts, around 400 are Linux (RH5 and RH6 all x64). All these linux hosts are running agent version 2.2.6.
I want to monitor the ssh logins in each server but I have no clue how can I implement this in zabbix or if it's even possible....
I want to use the command last -w and have some output of some sort, either list or graph, or grep the /var/log/secure for "Accepted publickey for" & "Rejected publickey for" and eventually, when the grep finds Rejected, to trigger me a message...
Thanks for all your input....
Comment