The Audit panel allows you to build audit filters that you can save and apply on existing audit records.
To perform the task described in this section, you must have the following administration role:
||NOTE: For more information on administration roles, see Section Managing administrators.|
This window allows you to select the category of event to filter:
This category allows you to apply a filter on applications according to their name or their identifier.
This category allows you to apply a filter on audit identifiers.
This category allows you to choose the family of audit events you want to be displayed in the audit report:
This category allows you to filter events according to their error status.
This category allows you to choose the event attributes you want to be displayed in the report:
Example: cache authentication, DN, delegates...
This category allows you to define the audit events that must be included in the audit report.
This category allows you to define a regular expression that will be applied to the Extended information field.
For more information on regular expressions, see Basic syntax of regular expressions.
This category allows you to apply a filter on access points according to their name or their identifier.
This category only appears if your audit administration role is not restricted to a set of audit populations (for more information, see Section Delegating Administration Roles).
It allows you to filter events according to existing audit populations.
||NOTE: The OR logic operator applies to the conditions of a given category and the AND logic operator allows you to associate several categories.|
All defined audit filters will be applied before the EAM Security Services decide whether this operation should be audited. If at least one filter indicates that the operation should be audited, then the associated audit event is created.
In this section: