Configuring Audit Logging

The audit log in Avalanche collects information about actions performed from the Avalanche Console. As part of the data collection, the audit log includes the IP address of each Console that generated a logged event. Configuring audit logging preferences, viewing, and clearing the log can only be performed by an Administrator.

Note:   For information on viewing actions in the audit log, see Viewing the Audit Log.

The audit log will store up to 200,000 actions in the database. When 200,000 actions have been stored, Avalanche will move the oldest records to a .csv file in the backup directory and delete them from the database.

You can also archive the audit log at a specific time every day. When the information is archived, it is copied to a .csv file. The .csv file is stored in the same directory where backup files are stored. For information on configuring the backup file location, see Specifying the Backup Location.

The following events can be configured for logging:

Deployment Package modifications

When a deployment package is modified.

Profile modification

When a profile is modified.

Device Commands

When one of the tools in the Device Details Tools panel is used.

Device Group modifications

When a device group is modified.

Group Location modifications

When a group location is modified.

Region Location modifications

When a region is modified.

Server Location modifications

When a server location is modified.

Profile Application modifications

When a profile is applied, excluded, or removed from a location.

Scheduled Event, Apply/Deploy Profiles

When an Apply/Deploy Profiles event has occurred.

Scheduled Event, Deploy/Update Servers

When a Deploy/Update Servers event has occurred.

Scheduled Event, System Backup

When a System Backup event has occurred.

Scheduled Event, System Restore

When a System Restore event has occurred.

Scheduled Event, Uninstall Server

When an Uninstall Server event has occurred.

Scheduled Event, Universal Deployment

When a scheduled Universal Deployment event has occurred.

Scheduled Event, Update Firmware

When an Update Firmware event has occurred.

User Logon/Logoff

When a user logs on or logs off the Avalanche Console.

User modifications

When a user account is modified.

VLACL modifications

When the VLACL is modified.

Console to Device Server Events

When servers are managed from the Console.

To enable audit logging:

1   Click Tools > Settings.

The Settings dialog box appears.

2   Select the Audit Logging tab.
3   Enable the Enable Audit Logging check box.
4   If you want the audit log archived, enable Enable Audit Log Archiving and select the time of day (using a 24-hour clock) you want the log to be archived.
5   From the list, enable the events you want to record.
6   Click Apply.
7   Click OK to close the Settings dialog box.

 

© 2012 Wavelink Corporation. All Rights Reserved.