0 Replies Latest reply on Jan 8, 2020 8:23 AM by GREGOIRE Alain

    auditing

    GREGOIRE Alain Newbie

      Hi,

       

      We enabled the auditing from :

       

           # Enable auditing

           /core-service=management/access=audit/logger=audit-log:write-attribute(name=enabled,value=true)

       

           # Change the log-read-only attribute

           /core-service=management/access=audit/logger=audit-log:write-attribute(name=log-read-only,value=false)

       

           # Change the location of audit log files

           /core-service=management/access=audit/file-handler=file:write-attribute(name=relative-to,value="jboss.server.log.dir")

       

      The problem is the audit-log is not accessible for "group" or "other" :

       

           -rw------- 1 jboss jboss 111886 Jan  8 11:44 audit-log.log

           -rw------- 1 jboss jboss   2900 Jan  8 11:41 audit-log.log2020-01-08_114151

           -rw------- 1 jboss jboss 112763 Jan  8 11:41 audit-log.log2020-01-08_114318

           -rw------- 1 jboss jboss 111886 Jan  8 11:43 audit-log.log2020-01-08_114401

           -rw-r--r-- 1 jboss jboss      0 Jan  8 11:41 audit.log

           -rw-r--r-- 1 jboss jboss 110279 Jan  8 11:44 server.log

       

      1) Is it possible to change this and use the same kind of permission for "server.log" ?

      2) is it possible to redirected the audit events on stdout from CLI ?

      3) What is the difference between "audit.log" and "audit-log.log"

       

      Regards.