My goal is to collect through graylog ONLY logs related to the operations performed by system administrators on multiple servers for example:
Administrative access on servers (Linux, Windows)
Administrative accesses to databases (mysql, sqlserver)
Server maintenance (Creation, disabling, password changes)
Network configurations (Changes)
Domain access on Windows clients
Access, modification, deletion of shared files on Windows shares
Is there a pre-built solution within the marketplace (possibly to be fixed)?