Layer7 API Management

  • Private Community
Back to discussions
Expand all | Collapse all

Which property is required to enable and disable the audit events

  • 1.  Which property is required to enable and disable the audit events

    Posted Feb 10, 2017 02:59 AM

    Hi All,

        As far as I know we do have properties to completely ignore the audit events but I need to know which one it is?

    Audit details assertion is there to specifically track the audits of particular policy.

     

    Is there any property to activate and deactivate for generating audit events of complete policy manager?

     

    Regards

    Rajasekhar



  • 2.  Re: Which property is required to enable and disable the audit events
    Best Answer

    Broadcom Employee
    Posted Feb 11, 2017 02:29 PM

    Good afternoon, there is not one switch to turn off the audit all together through a cluster property. It can be accomplished by changing the Manage Log/Audit Sinks -> Click Manage Audit Sink button -> uncheck "Save audit records to Gateway database" -> Check Output audit records via audit sink policy-> Click the Configure button -> Create a custom audit sink. In the audit sink policy remove everything in the policy and add back in a Continue processing assertion. This procedure will stop writing audits out to the database. If you want to remove the audit from being written to logs you will need to remove the Audit category from each of the log sinks as well.

     

    One other note that is you want to only exclude certain audits from being written to the log or db then you can add in the cluster wide property audit.auditDetailExcludeList and add in the audit code with a space to delimit it.

     

    Sincerely,

     

    Stephen Hughes

    Director, CA Support