The SIM Audit category contains events that are related to user interaction with the JSA Console and administrative features.
The following table describes the low-level event categories and associated severity levels for the SIM Audit category.
Table 1: Low-level Categories and Severity Levels for the SIM Audit Category
Low-level event category
Severity level (0 - 10)
SIM User Authentication
Indicates a user login or logout on the Console.
SIM Configuration Change
Indicates that a user changed the SIM configuration or deployment.
SIM User Action
Indicates that a user initiated a process, such as starting a backup or generating a report, in the SIM module.
Indicates that a user session was created.
Indicates that a user session was destroyed.
Admin Session Created
Indicates that an admin session was created.
Admin Session Destroyed
Indicates that an admin session was destroyed.
Session Authentication Invalid
Indicates an invalid session authentication.
Session Authentication Expired
Indicates that a session authentication expired.
Risk Manager Configuration
Indicates that a user changed the JSA Risk Manager configuration.