Fujitsu M8000 Server User Manual


 
63
CHAPTER
5
Audit Configuration
A SPARC Enterprise Mx000 server can have multiple domains. Those domains must
be as secure as if they were running on physically separate servers. To help ensure
that level of security, XSCF firmware provides the audit measures described in this
chapter.
This chapter contains these sections:
About Auditing
XSCF Shell Procedures for Auditing
Related Information
About Auditing
A SPARC Enterprise Mx000 server logs all Service Processor events that could be
relevant to security, such as system startup and shutdown, user login and logout,
and privilege changes.
An audit record contains information about a single event, what caused it, the time
it occurred, and other relevant information. A collection of audit records that are
linked is called an audit trail. An audit trail can reveal suspicious or abnormal
patterns of system behavior, in addition to identifying which user was responsible
for a particular event.
Auditing is implemented through:
Audit Records
Audit Events
Audit Classes
Audit Policy
Audit File Tools