JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
System Administration Guide: Security Services
search filter icon
search icon

Document Information


Part I Security Overview

1.  Security Services (Overview)

Part II System, File, and Device Security

2.  Managing Machine Security (Overview)

3.  Controlling Access to Systems (Tasks)

4.  Controlling Access to Devices (Tasks)

5.  Using the Basic Audit Reporting Tool (Tasks)

6.  Controlling Access to Files (Tasks)

7.  Using the Automated Security Enhancement Tool (Tasks)

Part III Roles, Rights Profiles, and Privileges

8.  Using Roles and Privileges (Overview)

9.  Using Role-Based Access Control (Tasks)

10.  Role-Based Access Control (Reference)

11.  Privileges (Tasks)

12.  Privileges (Reference)

Part IV Oracle Solaris Cryptographic Services

13.  Oracle Solaris Cryptographic Framework (Overview)

14.  Oracle Solaris Cryptographic Framework (Tasks)

15.  Oracle Solaris Key Management Framework

Part V Authentication Services and Secure Communication

16.  Using Authentication Services (Tasks)

17.  Using PAM

18.  Using SASL

19.  Using Solaris Secure Shell (Tasks)

20.  Solaris Secure Shell (Reference)

Part VI Kerberos Service

21.  Introduction to the Kerberos Service

22.  Planning for the Kerberos Service

23.  Configuring the Kerberos Service (Tasks)

24.  Kerberos Error Messages and Troubleshooting

25.  Administering Kerberos Principals and Policies (Tasks)

26.  Using Kerberos Applications (Tasks)

27.  The Kerberos Service (Reference)

Part VII Oracle Solaris Auditing

28.  Oracle Solaris Auditing (Overview)

29.  Planning for Oracle Solaris Auditing

30.  Managing Solaris Auditing (Tasks)

Solaris Auditing (Task Map)

Configuring Audit Files (Task Map)

Configuring Audit Files (Tasks)

How to Modify the audit_control File

How to Configure syslog Audit Logs

How to Change a User's Audit Characteristics

How to Add an Audit Class

How to Change an Audit Event's Class Membership

Configuring and Enabling the Audit Service (Task Map)

Configuring and Enabling the Audit Service (Tasks)

How to Create Partitions for Audit Files

How to Configure the audit_warn Email Alias

How to Configure Audit Policy

How to Enable the Audit Service

How to Disable the Audit Service

How to Update the Audit Service

Configuring the Audit Service in Zones (Tasks)

How to Configure All Zones Identically for Auditing

How to Configure Per-Zone Auditing

Managing Audit Records (Task Map)

Managing Audit Records

How to Display Audit Record Formats

How to Merge Audit Files From the Audit Trail

How to Select Audit Events From the Audit Trail

How to View the Contents of Binary Audit Files

How to Clean Up a not_terminated Audit File

How to Prevent Audit Trail Overflow

Troubleshooting Solaris Auditing (Tasks)

Troubleshooting Solaris Auditing (Task Map)

How to Determine That Solaris Auditing Is Running

How to Lessen the Volume of Audit Records That Are Produced

How to Audit All Commands by Users

How to Find Audit Records of Changes to Specific Files

How to Modify a User's Preselection Mask

How to Prevent the Auditing of Certain Events

How to Limit the Size of Binary Audit Files

How to Audit Logins From Other OSes

How to Audit FTP and SFTP File Transfers

31.  Solaris Auditing (Reference)



Configuring Audit Files (Task Map)

The following task map points to the procedures for configuring files to customize auditing at your site. Most of the tasks are optional.

For Instructions
Select audit classes, and customize audit_control settings
  • Preselecting system-wide audit classes

  • Specifying the audit directories for each system

  • Setting disk space limits on audit file systems

(Optional) Log audit events in two modes
Enables you to monitor audit events in real time, in addition to storing audit records in binary format.
(Optional) Change audit characteristics for users
Sets user-specific exceptions to the system-wide preselected audit classes.
(Optional) Add audit classes
Reduces the number of audit records by creating a new audit class to hold events.
(Optional) Change event-to-class mappings
Reduces the number of audit records by changing the event-class mapping.