JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
System Administration Guide: Security Services
search filter icon
search icon

Document Information


Part I Security Overview

1.  Security Services (Overview)

Part II System, File, and Device Security

2.  Managing Machine Security (Overview)

3.  Controlling Access to Systems (Tasks)

4.  Controlling Access to Devices (Tasks)

5.  Using the Basic Audit Reporting Tool (Tasks)

6.  Controlling Access to Files (Tasks)

7.  Using the Automated Security Enhancement Tool (Tasks)

Part III Roles, Rights Profiles, and Privileges

8.  Using Roles and Privileges (Overview)

9.  Using Role-Based Access Control (Tasks)

10.  Role-Based Access Control (Reference)

11.  Privileges (Tasks)

12.  Privileges (Reference)

Part IV Oracle Solaris Cryptographic Services

13.  Oracle Solaris Cryptographic Framework (Overview)

14.  Oracle Solaris Cryptographic Framework (Tasks)

15.  Oracle Solaris Key Management Framework

Part V Authentication Services and Secure Communication

16.  Using Authentication Services (Tasks)

17.  Using PAM

18.  Using SASL

19.  Using Solaris Secure Shell (Tasks)

20.  Solaris Secure Shell (Reference)

Part VI Kerberos Service

21.  Introduction to the Kerberos Service

22.  Planning for the Kerberos Service

23.  Configuring the Kerberos Service (Tasks)

24.  Kerberos Error Messages and Troubleshooting

25.  Administering Kerberos Principals and Policies (Tasks)

26.  Using Kerberos Applications (Tasks)

27.  The Kerberos Service (Reference)

Part VII Oracle Solaris Auditing

28.  Oracle Solaris Auditing (Overview)

29.  Planning for Oracle Solaris Auditing

30.  Managing Solaris Auditing (Tasks)

Solaris Auditing (Task Map)

Configuring Audit Files (Task Map)

Configuring Audit Files (Tasks)

How to Modify the audit_control File

How to Configure syslog Audit Logs

How to Change a User's Audit Characteristics

How to Add an Audit Class

How to Change an Audit Event's Class Membership

Configuring and Enabling the Audit Service (Task Map)

Configuring and Enabling the Audit Service (Tasks)

How to Create Partitions for Audit Files

How to Configure the audit_warn Email Alias

How to Configure Audit Policy

How to Enable the Audit Service

How to Disable the Audit Service

How to Update the Audit Service

Configuring the Audit Service in Zones (Tasks)

How to Configure All Zones Identically for Auditing

How to Configure Per-Zone Auditing

Managing Audit Records (Task Map)

Managing Audit Records

How to Display Audit Record Formats

How to Merge Audit Files From the Audit Trail

How to Select Audit Events From the Audit Trail

How to View the Contents of Binary Audit Files

How to Clean Up a not_terminated Audit File

How to Prevent Audit Trail Overflow

Troubleshooting Solaris Auditing (Tasks)

Troubleshooting Solaris Auditing (Task Map)

How to Determine That Solaris Auditing Is Running

How to Lessen the Volume of Audit Records That Are Produced

How to Audit All Commands by Users

How to Find Audit Records of Changes to Specific Files

How to Modify a User's Preselection Mask

How to Prevent the Auditing of Certain Events

How to Limit the Size of Binary Audit Files

How to Audit Logins From Other OSes

How to Audit FTP and SFTP File Transfers

31.  Solaris Auditing (Reference)



Configuring and Enabling the Audit Service (Task Map)

The following task map points to procedures for configuring and enabling the audit service. The tasks are ordered.

For Instructions
1. (Optional) Change the audit configuration files
Selects which events, classes, and users require auditing.
2. Create audit partitions
Creates disk space for the audit files, and protects them with file permissions.
3. Create the audit_warn alias
Defines who should get email warnings when the audit service needs attention.
4. (Optional) Change audit policy
Defines additional audit data that your site requires.
6. Configure auditing in non-global zones
Enable non-global zones to collect auditing records
7. Enable auditing
Turns on the audit service.
When perzone auditing is turned on, enables auditing in a non-global zone.
8. (Optional) Disable auditing
Turns off the audit service.
When perzone auditing is turned on, disables auditing in a non-global zone.
9. (Optional) Reread auditing configuration changes
Reads audit configuration changes into the kernel while the auditd daemon is running.