The following example shows the detailed information on an administration event related to the creation of a time slice.
The Events Details window gives you more information on a selected event. Compared with the Audit main window, it contains two additional pieces of information:
The other fields display the same information as the Audit main window.
|
NOTE: The User's audit ID field corresponds to the Audit ID column of the Audit main window. |
Field |
Description |
Error code |
This field informs you on the cause of the error. |
Description |
This area gives more information on the event (for a detailed description of this field for administration events, see Section Detailed information on the audit administration events). |
Population |
This field only appears for events related to a group, an organizational unit or a directory that has been identified as an audit population. |
This section focuses on the information displayed by two specific fields of the Audit window:
The Event Type field is built using the type of the audited object and the administration action on this object. Just combine one entry of the Object Type column with one entry of the Administration Operation column below to get the list of possible values that can appear in the Event Type field of an administration event:
|
NOTE: The aim of the following table is to show you as many combinations as possible, but it is not exhaustive. |
Object type |
Administration operation |
|
|
Examples:
The Description field of administration audit events displays two groups of information:
This description is available with the following objects:
|
NOTE: For a detailed description, per object, of the displayed information, see the table below. |
Detailed description per object
Object |
Description |
Token |
Token class. Token serial number. Token state. Owner (owner name and DN). |
User - Application access |
Application (name and DN). User (list of the authorized users). |
Application - Access point access |
Application (name and DN). Access point (name and DN). |
Account parameter |
Name (name and DN of the account parameter). User (name and DN). Connection Account base identifier. Application (name and DN) |
Account |
User (name and DN). Connection Account base identifier. Application (name and DN) |
Application administration profile |
User (name and DN). Application (name and DN) |
User access - Access point |
User (name and DN). Access point (name and DN). |
You can export the displayed audit events in a CSV or XML file.
Audit events export is available from the Audit panel of EAM Console or from the Directory panel.
Procedure
|
NOTE: If no events are selected, all the events will be exported. |
|
NOTE: If no events are selected, all the events will be exported. |
The archiving functionality allows you to export a selection of audit records in a CSV file, and delete these records exported from the audit database.
To perform the task described in this section, you must have the following administration role:
|
NOTE: For more information on administration roles, see Section Managing administrators. |
Procedure
|
IMPORTANT: If you do not want to delete the audit records exported from the audit database, click Cancel at Step 3. |
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy