The default audit module logs authentication and authorization requests to the server log file. For information on changing the location of the log file, see To configure general logging settings.
Authentication log entries include the following information:
Names of users who attempted to authenticate.
The realm that processed the access request.
The requested Web module URI or EJB component.
Success or failure of the request.
Regardless of whether audit logging is enabled, the Application Server logs all denied authentication events.
Authorization log entries include the following information:
Names of authenticated users, if any.
The requested Web URI or EJB component.
Success or failure of the requests.
In the Admin Console tree component, expand the Configuration node.
Expand the Security node.
Expand the Audit Modules node.
Click the default node.
Set the value of the auditOn property to true.
Select Save to save the changes.
Restart the Application Server if Restart Required displays in the console.