Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Configure Audit Log Options in FIPS Mode

Learn to configure audit log options on your device in FIPS mode.

Audit log options refer to the settings and configurations available for managing and maintaining audit logs in a system. Audit logs are records that document various activities, changes to the configuration, and events that occur within a system, providing a trail that can be used for security, compliance, and troubleshooting.

Configure Audit Log Options on Your Device in FIPS Mode

To configure audit log options on your device in FIPS mode:

  1. Specify the number of files you need to archive in the system logging facility.
  2. Specify the file in which to log data.
  3. Specify the size of files you need to archive.
  4. Specify the priority and facility in messages for the system logging facility.
  5. Configure system message logging to follow a structured format.
  6. Commit the changes:

Sample Code Audits for Configuration Change Audit

The following sample code audits all changes to the configured secret data and sends the logs to a file named Audit-File.

This sample code expands the minimum audit scope from the changes to the secret data to all the changes to the configuration and sends the logs to a file named Audit-File.

Example: System Logging for Configuration Changes

This example shows a sample configuration and makes changes to users and secret data. It then shows the information sent to the audit server when the secret data is added to the original configuration and committed with the load command.

The following example shows configuration statements that change the secret data and add a new user.