2.1.1.11 Configure Security Auditing

This topic provides information on configure security auditing.

Most server operating systems (Linux OS with kernel version 2.6 onwards, Microsoft Windows Server 2003 etc.) allow for auditing file and directory access. Oracle Financial Services recommends enabling this feature in order to track file system access violations. It is not recommended to enable audit for normal file access operations; audits should preferably contain records of violations to reduce the amount of noise in the logs.

Administrators should ensure sufficient disk space for the audit log. Additionally, administrators should factor the increase on server load due to auditing being enabled.