audit-logging
The audit-logging element controls the settings for the audit log.
Parameters
- state
- Whether audit logging is enabled.
- Default: disabled
- Values: enabled | disabled
- detail-level
- Specifies the level of detail in audit log entries.
- Default: brief
- Values: brief | verbose
- audit-trail
- Whether to record every successful ACLI command.
- Default: disabled
- Values: enabled | disabled
- audit-http
- Whether HTTP methods and headers are logged.
- Default: disabled
- Values: enabled | disabled
- audit-record-output
- Define where audit records are logged.
- Default: file
- Values: syslog | file | both
- file-transfer-time
- Specify the maximum interval in hours between audit-log
transfers to a previously configured SFTP server. The value 0 disables SFTP
pushes.
- Default: 720
- Min: 0 | Max: 65535
- max-storage-space
- Specifies the maximum disk space in megabytes available for
audit log storage.
- Default: 32
- Min: 1 | Max: 32
- percentage-full
- Specifies a file size threshold (as a percentage of
max-storage-space) that triggers audit file transfer to a previously
configured SFTP server or servers.
- Default: 75
- Min: 0 | Max: 99
- max-file-size
- Specifies a file size threshold (as an absolute file size
measured in megabytes) that triggers audit file transfer to a previously
configured SFTP server or servers.
- Default: 5
- Min: 0 | Max: 10
- storage-path
- The local path where audit logs are stored.
- Default: /code/audit/
- push-receiver
- Enter the push-receiver configuration element.
See the Admin Security Guide for configuring the audit logging push receiver.
Path
The full path is security, and then admin-security, and then audit-logging.