-
Notifications
You must be signed in to change notification settings - Fork 137
AUTHZ Audit Event
Endi S. Dewata edited this page May 31, 2023
·
3 revisions
The AUTHZ audit event is generated when authorization succeeds or fails.
Properties:
-
Outcome:SuccessorFailure -
aclResourcemust be the ACL resource ID as defined in ACL resource list -
Opmust be one of the operations as defined with the ACL statement, e.g.readfor an ACL statement containing(read,write)
In PKI 10.5 the AUTHZ_SUCCESS and AUTHZ_FAIL events have been merged into AUTHZ event.
Use PKI CLI as an admin user to access the users:
$ pki -n caadmin ca-user-find
The server will generate the following events:
[AuditEvent=AUTHZ][SubjectID=caadmin][Outcome=Success][aclResource=certServer.ca .users][Op=execute][Info=UserResource.findUsers] authorization success
Use PKI CLI as a non-admin user to access the users:
$ pki -u testuser -w Secret.123 ca-user-find
The server will generate the following events:
[AuditEvent=AUTHZ][SubjectID=testuser][Outcome=Failure][aclResource=certServer.c a.users][Op=execute][Info=Authorization Error] authorization failure
|
Tip
|
To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis. |