8.3 Configuring Queries

The Queries option in the Auditing and Logging plug-in allows you to use SQL queries to retrieve information about the events stored in the database. The following sections explain how to configure and use this feature.

8.3.1 Enabling Queries to the MySQL Database

  1. In the Administration Console, click Auditing and Logging > Query Options.

  2. Click New.

  3. Fill in the following fields:

    Name: Specify MySQL.

    JDBC Class: Specify com.mysql.jdbc.Driver.

    JDBC URL: Specify jdbc:mysql://<IP address>:3306/naudit.

    Replace <IP address> with the IP address of your MySQL server, for example: jdbc:mysql://10.10.10.10:3306/naudit.

    Table: Specify nauditlog.

    Username: Specify auditusr.

    Password: Specify auditpwd.

    Store Password: Select this option so that the password is stored.

  4. Click OK.

  5. Continues with Section 8.3.2, Configuring the Query Event List and Display.

8.3.2 Configuring the Query Event List and Display

  1. On the Query Options page, click the Product Events tab.

  2. Click the Object Selector icon, and find the Logging Server object that has the host name of your Administration Console prepended to it, for example Jwilson1 Logging Server.

    For this example, the Novell Audit Secure Logging Server DN field displays the following name:

    Jwilson1 Logging Server.Logging Services

  3. Click Update.

  4. Click the Global Options tab.

  5. Select RFC822 Local for the Date/Time format.

  6. Click OK.

  7. Continue with Section 8.3.3, Performing a Query.

8.3.3 Performing a Query

  1. Click Queries under Auditing and Logging.

  2. Select All Last Hour, then click Run Query.

    A display similar to the following should appear.

    For more information about the fields that are possible on each event row, see Access Manager Audit Events and Data in the Novell Access Manager 3.0 SP4 Administration Guide.

    For more information about how to use queries and create your own, see the Novell Audit 2.0 Administration Guide.