When processing a logging request, the Logging Service extracts information from a user's session data structure and writes it to the configured log format, which can be either a flat file or a relational database. For example, this information can include access denials and approvals, authentication events, and authorization violations.
Administrators can then use the logs to track user actions, analyze traffic patterns, audit system usage, review authorization violations, and troubleshoot. Logged information is recorded in a centralized directory; which by default, is:
ConfigurationDirectory/depoly-uri/log
ConfigurationDirectory is the name of the directory specified during the initial configuration of OpenSSO Enterprise server instance using the Configurator. This directory is created in the home directory of the user who ran the Configurator.
deply-uri is the OpenSSO Enterprise deployment descriptor.
For example: /opensso/opensso/log
For more information about user sessions and the session data structure, see Chapter 6, Models of the User Session and Single Sign-On Processes, in Sun OpenSSO Enterprise 8.0 Technical Overview.
For information about how the Logging Service works, see Chapter 15, Recording Events with the Logging Service, in Sun OpenSSO Enterprise 8.0 Technical Overview.