Configuring Logs to Work with Load Balancers

You can configure Identity Manager to automatically log the client IP address contained in the x-Forwarded-For HTTP request header, which is the standard header for identifying the originating IP address of a client connecting to a web server through a load balancer or HTTP proxy. If necessary, you can also configure Identity Manager to use a custom HTTP header.

To force Identity Manager to log IP addresses contained in a custom HTTP request header, use the following steps:

1. Open Waveset.properties in a text editor.

2. Search for client.headerIPVariable= and uncomment the line.

3. Type the name of the HTTP request header that you want Identity Manager to use instead.

   Alternatively, you can disable this feature by setting the property equal to zero.

4. Save Waveset.properties.

5. Restart Identity Manager.

You can apply this configuration to both audit logs and system logs.

If you do not want Identity Manager to automatically log the client IP address, you can disable this feature by uncommenting the client.headerIPVariable in the Waveset.properties file.