Hi,
We enabled the auditing from :
# Enable auditing
/core-service=management/access=audit/logger=audit-log:write-attribute(name=enabled,value=true)
# Change the log-read-only attribute
/core-service=management/access=audit/logger=audit-log:write-attribute(name=log-read-only,value=false)
# Change the location of audit log files
/core-service=management/access=audit/file-handler=file:write-attribute(name=relative-to,value="jboss.server.log.dir")
The problem is the audit-log is not accessible for "group" or "other" :
-rw------- 1 jboss jboss 111886 Jan 8 11:44 audit-log.log
-rw------- 1 jboss jboss 2900 Jan 8 11:41 audit-log.log2020-01-08_114151
-rw------- 1 jboss jboss 112763 Jan 8 11:41 audit-log.log2020-01-08_114318
-rw------- 1 jboss jboss 111886 Jan 8 11:43 audit-log.log2020-01-08_114401
-rw-r--r-- 1 jboss jboss 0 Jan 8 11:41 audit.log
-rw-r--r-- 1 jboss jboss 110279 Jan 8 11:44 server.log
1) Is it possible to change this and use the same kind of permission for "server.log" ?
2) is it possible to redirected the audit events on stdout from CLI ?
3) What is the difference between "audit.log" and "audit-log.log"
Regards.
