Audit.event.types
This property specifies which audit types are sent to the audit log.
- Audit.event.types={type[,type]}
- Only audit events that resulted in the specified outcome are recorded.
- Required
- Yes.
- Values
- all | runtime| authentication | authentication_terminate |
authorization | configuration_management | resource_management | key_management
| multimaster_management | none
Multiple values can be specified, separated by a comma or semicolon.Note: Do not specify a value of
none
in combination with other values.- all
- All event types.
- authentication
- Authentication events.
- authentication_terminate
- Events that occur when the user logs out. Not used.
- authorization
- Authorization events.
- configuration_management
- Configuration events.
- key_management
- Events when changes occur in the configuration of keys.
- resource_management
- Events when changes occur in the configuration of resources such as tape drives to the Guardium® Key Lifecycle Manager server.
- runtime
- Events that occur as a part of processing operations and requests that are sent to IBM® Security Guardium Key Lifecycle Manager.
- multimaster_management
- Events that occur as a part of processing operations and requests that are related to a Multi-Master cluster.
- none
- No events.Note: Do not specify a value of
none
in combination with other values.
- Default
- authorization, authorization_terminate, resource_management, runtime, key_management
- Examples
- To collect all auditable event data, enter:
Audit.event.types=all
Another example is:
Audit.event.types=authorization,runtime,resource_management