7.2 Creating Channel Objects

Nsure Audit is designed so you can create multiple Channel objects for any given channel driver. This means you can create different channel configurations for different functions or events. For instance, you can configure the logging server to use one MySQL Channel object to add events to the central data store and configure a Notification Filter to use another MySQL Channel object to create a filtered log.

To create and configure a channel object:

  1. Click the Roles and Tasks button iManager Tasks and Roles Button on the iManager toolbar.

  2. In the Roles and Tasks view, expand the Auditing and Logging Role and select the Logging Server Options task.

  3. Select the Secure Logging Server object and click OK.

    • Click the Object History button iManager Object History Button to see a list of Logging Server objects that have been selected during this iManager session.

      or

    • Click the Object Selector button iManager Object Selector button to locate the object in the directory tree. To move up or down in the tree, click the navigation arrows. You can also search the tree by specifying the object name and context in the Search tab.

  4. In the Logging Server Options page, click Channels.

  5. Select the Channels container and click Channel Actions > New, then click OK.

  6. In the New Channel page, select the desired channel.

  7. Specify a name for channel object and click OK.

  8. Configure the channel attributes.

    For more information about each channel, see Section 7.3, Supported Channels .

  9. When finished, click OK.

Channel Containers

You must create Channel objects in Channel containers. The Channel container under Logging Services is automatically created during installation; however, additional Channel containers can be created anywhere in the tree.

Creating Channel objects in the central Channel container under Logging Services is ideal for organizations that need a simple, easy-to-manage logging system. It also suits organizations that are implementing Nsure Audit as an auditing solution and, for security reasons, want to centrally manage their system.

If you want to distribute logging system administration, however, Channel objects can be created anywhere in the tree. For example, if administration is divided by logging server, you can create a Channel container under each Logging Server object. On the other hand, if administration is divided by application (for example, one person manages logging for iChain®, another Identity Manager logging, etc.), the Channel container can be created in any context assigned to its administrator.

If you create a Channel container elsewhere in the tree, you must add that container to the logging server’s list of supported containers. At startup, the logging server scans its list of supported Channel containers and loads the included Channel object configurations and their associated drivers in memory so it can provide event notification and log events. If a Channel object is not in one of the logging server’s supported Channel containers, it cannot be used to provide event notification or log events. For more information on the logging server’s Channel Container property, see Logging Server Objects . For more information on creating channel containers, see Section 3.4.1, Creating Objects in iManager.

IMPORTANT:The logging server loads the Channel object configurations only at startup. Therefore, if you create a new Channel container or Channel object, you must first ensure that the Channel container is included in the logging server’s Channel Container list and then restart the logging server. For information on restarting the logging server, see Section G.3, Secure Logging Server Startup Commands.