22.1 Enabling and Disabling the Audit Configuration

You can enable one or all the audit configurations as per your requirements. If you enable all the audit configuration options, the Workflow Administration Console saves the audit events in all the locations. To view the audit events, see workflow audit events.

To enable or disable the audit configuration:

  1. Log in to the Workflow Administration Console, then select Configuration > Audit Configuration.

  2. Select the location where you want to save the audit events.

    After you select, the Workflow Administration Console automatically saves your selection. The table below lists the properties which you can modify for audit configuration.

    Properties

    Description

    Truncate-to-cef

    Truncates the audit messages when they cross the specified word limit.

    Host

    Specifies the IP of the auditing server.

    Protocol

    Specifies the protocol the Workflow Administration Console uses to establish communication with the auditing server. You can use either TCP or UDP.

    Keystore password

    Specifies the password for the keystore type.

    Keystore type

    Specifies the keystore type.

    Check TLS certificate expiration

    Checks if the TLS (Transport Layer Security) certificate has expired or not. If the certificate has expired, then the Workflow Administration Console saves the audit events in the cache file. If not, it saves the audit events in the keystore file.

    Keystore file

    Specifies where the Workflow Administration Console saves the certificates.

    Port

    Specifies the port number of the auditing server.

    Cache file

    The Workflow Administration Console saves the audit events in a cache file when the syslog server is unreachable. After the syslog server becomes available, the Workflow Administration Console rolls back the events saved in the cache file to the syslog server.

    Cache dir

    Specifies the directory where the cache file is located.

    Filename prefix

    Specifies the prefix of the filename.

    Directory

    Specifies the directory where the file is located.

    Filename suffix

    Specifies the suffix of the filename.

    SSL type

    Specifies the authentication type, server or mutual.

    JDBC username

    Specifies the user name of the database.

    Fallback datasource

    Specifies the data source that persists the events temporarily when audit database is down.

    Fallback tablename

    Specifies the table name that stores the audit events temporarily in the fallback datasource when the audit database is down.

    Tablename

    Specifies the database table where the audit events are stored.

    JDBC URL

    Specifies the database connection URL where the audit events are stored.

    Use SSL

    Specifies whether the communication between entities is SSL secured or not.

    JDBC password

    Specifies the password used to access the database.

    Schema

    Specifies the identifier for the database. In the Postgres database, the default value is public.

    Driver

    Specifies the driver that is used to connect to the database.

    Truststore password

    Specifies the password for the truststore type.

    Truststore file

    Specifies the path to the truststore that contains all trusted certificates.

    Truststore type

    Specifies the truststore type, that is, JKS.