Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Configure Audit Log Options in FIPS Mode

Learn to configure audit log options on your device in FIPS mode.

Audit Log Options refer to the settings and configurations available for managing and maintaining audit logs within a system. Audit logs are records that document various activities, changes, and events that occur within a system, providing a trail that can be used for security, compliance, and troubleshooting purposes.

Configure Audit Log Options on Your Device in FIPS Mode

To configure audit log options on your device in FIPS mode:

  1. Specify the number of files you need to archive in the system logging facility.
  2. Specify the file in which to log data.
  3. Specify the size of files you need to archive.
  4. Specify the priority and facility in messages for the system logging facility.
  5. Specify to log system messages in a structured format.
  6. Commit the changes:

Sample Code Audits of Configuration Changes

The following sample code audits all changes to the configuration secret data and sends the logs to a file named Audit-File.

This sample code expands the scope of the minimum audit to audit all changes to the configuration, not just secret data, and sends the logs to a file named Audit-File.

Example: System Logging of Configuration Changes

This example shows a sample configuration and makes changes to users and secret data. It then shows the information sent to the audit server when the secret data is added to the original configuration and committed with the load command.

The new configuration changes the secret data configuration statements and then adds a new user.