logcfg

This stanza entry enables logging and auditing for the authorization component.

Syntax

logcfg = audit.azn:{log-agent} path=path
     flush_interval=interval log_id

Description

Enables logging and auditing for the authorization component.

Each server provides its own event logging setting in its corresponding configuration file.

Options

audit.azn

Category that specifies auditing of the authorization component.

log-agent

Specifies that the destination where log-agent is one of the following values:

stdout
stderr
file
pipe
remote

path = path

Specifies the name and location of the log file that is used for the log-agent.

flush_interval = interval

Specifies the frequency for flushing log file buffers.

log_id

Specifies the identifier for directing events from additional categories to the same log-agent.

Remove the number signs (#) at the beginning of the configuration file lines to enable authentication or authorization auditing (or both) for the application.

Usage

Optional

Default value

There is no default value.

Example

The following example shows the configuration for authentication and authorization auditing:

logcfg = audit.azn:file path=/var/PolicyDirector/audit/
      ivacld.log,flush_interval=20,log_id=PDAclAudit
logcfg = audit.authn:file log_id=PDAclAudit