AnsweredAssumed Answered

CA Endpoint 12.8 - KBL limitation

Question asked by karthik.Deluxe on Jun 29, 2015
Latest reply on Jun 30, 2015 by karthik.Deluxe



CA End Point 12.8 installation introduced a new kbl limitation , after upgrade users sessions are duplicated when user logs in.


When KBL is enabled it intercepts login session and additional process created between shell tty and connection.

This process is cmdlog and this process creates additional tty , it will show user logged in twice.

To avoid this , kbl_audit configuration has to be set as no which no longer tracks keyboard logging.