Management audit log - SSO
The management audit log records every add, change and delete action made by all users of the Ubisecure SSO Management application.
Example logs are shown:
Figure 1: Management Audit Log – a new user has been added by user Administrator at 16:56 on 16.02.2012 |
Figure 2: Management Audit Log – the user Conor McDonald has been deleted by user Administrator at 16:59 on 16.02.2012. |
Figure 3: Management Audit Log – the settings for an Agent has been changed by user Administrator at 16:26 on 16.02.2012. |
Enabling management audit logging
Management Audit Log is disabled by default.
To enable Management Audit Log, edit the following file with a text editor:
Windows:
C:\Program Files\Ubisecure\ubilogin-sso\ubilogin\webapps\ubilogin\WEB-INF\log4j.properties
Linux:
/usr/local/Ubisecure/ubilogin-sso/ubilogin/webapps/ubilogin/WEB-INF/log4j.properties
Change the following line from
log4j.logger.com.ubisecure.ubilogin.management = OFF, ManagementAudit
to
log4j.logger.com.ubisecure.ubilogin.management = INFO, ManagementAudit
Edit the following file with a text editor to enable the log in the Log Viewer:
Windows:
C:\Program Files\Ubisecure\ubilogin-sso\ubilogin\webapps\logviewer\WEB-INF\filesource.properties
Linux:Â
/usr/local/Ubisecure/ubilogin-sso/ubilogin/webapps/logviewer/WEB-INF/filesource.properties
Add the following section, modifying XX to a unique sequential number
# UAS Management Audit Log logsource.FileSource.filetype.XX.name = Management Audit logsource.FileSource.filetype.XX.type = text logsource.FileSource.filetype.XX.path = C\:\\Program Files\\Ubisecure\\ubilogin-sso\\ubilogin/logs logsource.FileSource.filetype.XX.filename = management_audit.%YYYY-%MM-%DD.log
Reploy and restart the Ubisecure SSO by executing:
Windows:
C:\Program Files\Ubisecure\ubilogin-sso\ubilogin\config\tomcat\update.cmd
Linux:
/usr/local/Ubisecure/ubilogin-sso/ubilogin/webapps/config\tomcat\update.cmd