Audit.event.types

This property specifies which audit types are sent to the audit log.

Audit.event.types={type[,type]}
Only audit events that resulted in the specified outcome are recorded.
Required
Yes.
Values
all | runtime| authentication | authentication_terminate | authorization | configuration_management | resource_management | key_management | multimaster_management | none
Multiple values can be specified, separated by a comma or semicolon.
Note: Do not specify a value of none in combination with other values.
all
All event types.
authentication
Authentication events.
authentication_terminate
Events that occur when the user logs out. Not used.
authorization
Authorization events.
configuration_management
Configuration events.
key_management
Events when changes occur in the configuration of keys.
resource_management
Events when changes occur in the configuration of resources such as tape drives to the Guardium® Key Lifecycle Manager server.
runtime
Events that occur as a part of processing operations and requests that are sent to IBM® Security Guardium Key Lifecycle Manager.
multimaster_management
Events that occur as a part of processing operations and requests that are related to a Multi-Master cluster.
none
No events.
Note: Do not specify a value of none in combination with other values.
Default
authorization, authorization_terminate, resource_management, runtime, key_management
Examples
To collect all auditable event data, enter:
Audit.event.types=all

Another example is:

Audit.event.types=authorization,runtime,resource_management