Administration Console Online Help

Previous Next Open TOC in new window
Content starts here

WebLogic Auditing Provider: Provider Specific

Configuration Options     Related Tasks     Related Topics

This page allows you to configure provider specific attributes for this WebLogic Auditing provider.

All auditing information recorded by the WebLogic Auditing provider is saved in WL_HOME/yourdomain/yourserver/logs/DefaultAuditRecorder.log by default. Although an Auditing provider is configured per security realm, each server writes auditing data to its own log file in the server directory. You can specify a new directory location for the DefaultAuditRecorder.log file on the command line with the following Java startup option: -Dweblogic.security.audit.auditLogDir=c:\foo The new file location will be c:\foo\yourserver\logs\DefaultAuditRecorder.log.

Configuration Options

Name Description
Severity

The severity level at which auditing is initiated.

Severity levels are ranked in this order:

  1. INFORMATION

  2. WARNING

  3. ERROR

  4. SUCCESS

  5. FAILURE

If you select a given severity level, all events of that level or more will be audited. For example, if you set the severity to ERROR, then all FAILURE, SUCCESS, and ERROR events will be audited, but WARNING and INFORMATION events will not. You can instead set the severity to CUSTOM and then enable the specific severity level events you want to audit.

MBean Attribute:
DefaultAuditorMBean.Severity

Active Context Handler Entries

Select the ContextHandler entries you want this Audit provider to handle and move them from Available to Chosen with the arrow buttons.

An Audit Event includes a ContextHandler that can hold a variety of information or objects. By default, none of the entries in the ContextHandler are audited. Objects in the ContextHandler are in most cases logged using the toString method. For a list of ContextHandler entries supported by the Audit provider, see Configuring Security Providers: Configuring the WebLogic Auditing Provider: Configuration Auditing in Securing WebLogic Server.

MBean Attribute:
DefaultAuditorMBean.ActiveContextHandlerEntries

Changes take effect after you redeploy the module or restart the server.

Rotation Minutes

Specifies how many minutes to wait before creating a new DefaultAuditRecorder.log file. At the specified time, the audit file is closed and a new one is created.

MBean Attribute:
DefaultAuditorMBean.RotationMinutes

Minimum value: 1

Changes take effect after you redeploy the module or restart the server.

Information Audit Severity Enabled

If the Severity value is set to Custom, causes the Auditing provider to generate audit records for events with a severity level of INFORMATION.

MBean Attribute:
DefaultAuditorMBean.InformationAuditSeverityEnabled

Warning Audit Severity Enabled

If the Severity value is set to Custom, causes the Auditing provider to generate audit records for events with a severity level of WARNING.

MBean Attribute:
DefaultAuditorMBean.WarningAuditSeverityEnabled

Error Audit Severity Enabled

If the Severity value is set to Custom, causes the Auditing provider to generate audit records for events with a severity level of ERROR.

MBean Attribute:
DefaultAuditorMBean.ErrorAuditSeverityEnabled

Failure Audit Severity Enabled

If the Severity value is set to Custom, causes the Auditing provider to generate audit records for events with a severity level of FAILURE.

MBean Attribute:
DefaultAuditorMBean.FailureAuditSeverityEnabled

Success Audit Severity Enabled

If the Severity value is set to Custom, causes the Auditing provider to generate audit records for events with a severity level of SUCCESS.

MBean Attribute:
DefaultAuditorMBean.SuccessAuditSeverityEnabled

Begin Marker

The marker that indicates the beginning of the audit record.

MBean Attribute:
DefaultAuditorMBean.BeginMarker

Changes take effect after you redeploy the module or restart the server.

End Marker

The marker that indicates the end of the audit record.

MBean Attribute:
DefaultAuditorMBean.EndMarker

Changes take effect after you redeploy the module or restart the server.

Field Prefix

The prefix character that indicates the beginning of a field in the audit record.

MBean Attribute:
DefaultAuditorMBean.FieldPrefix

Changes take effect after you redeploy the module or restart the server.

Field Suffix

The suffix character that indicates the end of a field in the audit record

MBean Attribute:
DefaultAuditorMBean.FieldSuffix

Changes take effect after you redeploy the module or restart the server.

Related Tasks

Related Topics


Back to Top