Management audit log - SSO

The management audit log records every add, change and delete action made by all users of the Ubisecure SSO Management application.
Example logs are shown:

Figure 1: Management Audit Log – a new user has been added by user Administrator at 16:56 on 16.02.2012


Figure 2: Management Audit Log – the user Conor McDonald has been deleted by user Administrator at 16:59 on 16.02.2012.


Figure 3: Management Audit Log – the settings for an Agent has been changed by user Administrator at 16:26 on 16.02.2012.


Enabling management audit logging

Management Audit Log is disabled by default.
To enable Management Audit Log, edit the following file with a text editor:

Windows:

C:\Program Files\Ubisecure\ubilogin-sso\ubilogin\webapps\ubilogin\WEB-INF\log4j.properties

Linux:

/usr/local/Ubisecure/ubilogin-sso/ubilogin/webapps/ubilogin/WEB-INF/log4j.properties



Change the following line from

log4j.logger.com.ubisecure.ubilogin.management = OFF, ManagementAudit

to

log4j.logger.com.ubisecure.ubilogin.management = INFO, ManagementAudit



Edit the following file with a text editor to enable the log in the Log Viewer:

Windows:

C:\Program Files\Ubisecure\ubilogin-sso\ubilogin\webapps\logviewer\WEB-INF\filesource.properties

Linux: 

/usr/local/Ubisecure/ubilogin-sso/ubilogin/webapps/logviewer/WEB-INF/filesource.properties



Add the following section, modifying XX to a unique sequential number

# UAS Management Audit Log
logsource.FileSource.filetype.XX.name = Management Audit
logsource.FileSource.filetype.XX.type = text
logsource.FileSource.filetype.XX.path = C\:\\Program Files\\Ubisecure\\ubilogin-sso\\ubilogin/logs
logsource.FileSource.filetype.XX.filename = management_audit.%YYYY-%MM-%DD.log 


Reploy and restart the Ubisecure SSO by executing:

Windows:

C:\Program Files\Ubisecure\ubilogin-sso\ubilogin\config\tomcat\update.cmd

Linux:

/usr/local/Ubisecure/ubilogin-sso/ubilogin/webapps/config\tomcat\update.cmd