You can enable one or all the audit configurations as per your requirements. If you enable all the audit configuration options, the Workflow Administration Console saves the audit events in all the locations. To view the audit events, see workflow audit events.
To enable or disable the audit configuration:
Log in to the Workflow Administration Console, then select Configuration > Audit Configuration.
Select the location where you want to save the audit events.
After you select, the Workflow Administration Console automatically saves your selection. The table below lists the properties which you can modify for audit configuration.
|
Properties |
Description |
|---|---|
|
Truncate-to-cef |
Truncates the audit messages when they cross the specified word limit. |
|
Host |
Specifies the IP of the auditing server. |
|
Protocol |
Specifies the protocol the Workflow Administration Console uses to establish communication with the auditing server. You can use either TCP or UDP. |
|
Keystore password |
Specifies the password for the keystore type. |
|
Keystore type |
Specifies the keystore type. |
|
Check TLS certificate expiration |
Checks if the TLS (Transport Layer Security) certificate has expired or not. If the certificate has expired, then the Workflow Administration Console saves the audit events in the cache file. If not, it saves the audit events in the keystore file. |
|
Keystore file |
Specifies where the Workflow Administration Console saves the certificates. |
|
Port |
Specifies the port number of the auditing server. |
|
Cache file |
The Workflow Administration Console saves the audit events in a cache file when the syslog server is unreachable. After the syslog server becomes available, the Workflow Administration Console rolls back the events saved in the cache file to the syslog server. |
|
Cache dir |
Specifies the directory where the cache file is located. |
|
Filename prefix |
Specifies the prefix of the filename. |
|
Directory |
Specifies the directory where the file is located. |
|
Filename suffix |
Specifies the suffix of the filename. |
|
SSL type |
Specifies the authentication type, server or mutual. |
|
JDBC username |
Specifies the user name of the database. |
|
Fallback datasource |
Specifies the data source that persists the events temporarily when audit database is down. |
|
Fallback tablename |
Specifies the table name that stores the audit events temporarily in the fallback datasource when the audit database is down. |
|
Tablename |
Specifies the database table where the audit events are stored. |
|
JDBC URL |
Specifies the database connection URL where the audit events are stored. |
|
Use SSL |
Specifies whether the communication between entities is SSL secured or not. |
|
JDBC password |
Specifies the password used to access the database. |
|
Schema |
Specifies the identifier for the database. In the Postgres database, the default value is public. |
|
Driver |
Specifies the driver that is used to connect to the database. |
|
Truststore password |
Specifies the password for the truststore type. |
|
Truststore file |
Specifies the path to the truststore that contains all trusted certificates. |
|
Truststore type |
Specifies the truststore type, that is, JKS. |