Filter
Top Products
63
CHAPTER
5
Audit Configuration
A SPARC Enterprise Mx000 server can have multiple domains. Those domains must
be as secure as if they were running on physically separate servers. To help ensure
that level of security, XSCF firmware provides the audit measures described in this
chapter.
This chapter contains these sections:
■ About Auditing
■ XSCF Shell Procedures for Auditing
■ Related Information
About Auditing
A SPARC Enterprise Mx000 server logs all Service Processor events that could be
relevant to security, such as system startup and shutdown, user login and logout,
and privilege changes.
An audit record contains information about a single event, what caused it, the time
it occurred, and other relevant information. A collection of audit records that are
linked is called an audit trail. An audit trail can reveal suspicious or abnormal
patterns of system behavior, in addition to identifying which user was responsible
for a particular event.
Auditing is implemented through:
■ Audit Records
■ Audit Events
■ Audit Classes
■ Audit Policy
■ Audit File Tools