| |
Actions performed at a server console can be audited, if you preselect them using volume auditing. However, the audit records will not contain any indication of who performed the action, because there is no console sign-on procedure. For this reason, you must maintain a manual log of all administrators who use the server console.
This log is used with the automated audit trail for establishing accountability for actions taken at the server console. Table 5 shows a sample format for a manual console log.
If you have more than one server in your network, you can keep a single log for all servers, or a separate log for each server, but make sure that administrators identify in the log which server consoles they use. If administrators do not maintain manual logs, actions taken at the server console cannot be identified with an individual.
Table 5. Sample Format for Console Audit Log
| Date | Time On | Time Off | Server User | User |
|---|---|---|---|---|
23 Mar 96 |
10:35am |
11:22am |
SERVER1 |
Joe Smith |
23 Mar 96 |
10:52am |
11:20am |
SERVER2 |
Joe Smith |
23 Mar 96 |
2:45pm |
4:50pm |
SERVER1 |
Jane Jones |
| |