-
Title
Setup Central Logging in Quest Privilege Manager for Unix 5.6 -
Description
How to setup Central Logging
-
Resolution
To configure central logging all you need to do is nominate one of your masters as the central log host.
checkout the working production policy
pmpolicy checkout -d /tmp/mypol
cd /tmp/mypol/policy_pmpolicy
vi pm.conf
it should look like this, this is a very basic exampleiologhost = "rhqpm2";
eventloghost = "rhqpm2";
include "profileBasedPolicy.conf";save it
in this case rhqpm2 is one of the masters nominated to be the central logging server.pmcheck -p /tmp/mypol/policy_pmpolicy
pmpolicy commit -d /tmp/mypol
Now your clients/ masters will use the central log server.
The clients setting in pm.settings should only contain masters, and the log master will need to allow the other masters access, so in my case my clients in pm.settings contains rhqpm1, rhqpm2
You can verify this is working by running some pmksh sessions and watching which master is authing, when you see a request being authorised by the non central log server then you can check the existance of the log file on the central log server.
This is based on using the default policy provide during installation.