Enabling file audit logging on a new spectrumscale cluster node

Use this information to configure file audit logging on a node that was added to a spectrumscale cluster.

For more information about adding nodes to an existing installation, see Adding nodes, NSDs, or file systems to an existing installation.

Adding nodes to the message queue after it has been enabled is not supported. To enable file audit logging on a new spectrumscale cluster node, you must disable file audit logging on all file systems where it is enabled, remove the message queue configuration, add the message queue configuration with the new broker nodes specified, and then re-enable file audit logging on the file systems. The following set of steps details the process:

1. Issue the following command to view the file systems that are enabled for file audit logging:

   mmaudit all list

2. Issue the following command to disable file audit logging on all file systems that have it enabled:

   mmaudit Device disable

3. Reissue the following command. Verify that you get the following message when file audit logging has been disabled on all file systems:

   # mmaudit all list
   [I] File audit logging is disabled for all devices.

4. Issue the following command to disable the message queue:

   mmmsgqueue config --remove

   Note:

   • You should run this command when the message queue configuration needs to be altered or removed. For example, instead of simply disabling the message queue, you should run this command if the set of message queue servers needs to be altered.
   • This command will also remove the message queue node classes and configuration information.
5. Issue the following command and verify that you get the following message:

   # mmmsgqueue status
   [I] MsgQueue currently not enabled.

6. Ensure that all rpm, package, OS, and hardware requirements stated in the Requirements and limitations for file audit logging are met by the new node.
   Note: Software requirements can be installed and verified using the installation toolkit. A node can be added through the toolkit or by manually installing the required rpm and packages using the package installation command based on the OS.
7. Enable file audit logging. For more information, see Enabling file audit logging on a file system.
   Note: Remember to add the new node when you enable the message queue.
8. Verify the nodes that are running the processes and their current states. For more information, see Monitoring the message queue server and ZooKeeper status.