The command line options for the Compliance Auditor allow you to perform the following tasks:
The Compliance Auditor now supports the ability to export and import its settings from the command line. You can export and import the following settings:
Audit Rules
Audit Reports
Access Control Levels
Exporting: The export command exports only configuration settings; the audit records are not exported. The export includes all rules and reports, even those that have been disabled. The Compliance Auditor does not allow rules or reports to be deleted, because they might be associated with audit records. The exported file is in XML format.
Importing: You should import the settings only on a system that hasn’t been configured or on a system where the current configuration is not needed. Every rule and report contains a unique ID, but if that ID already exists on the current system, the rule or report is overwritten by the imported configuration.
Commands: The commands use the following syntax:
./unifi -n secaudit import -f <file> ./unifi -n secaudit export -f <file>
If you have not mapped your local account to a Framework Manager user (see Modify User: Native Maps), replace the -n option with -u <username> -p <password> options and specify the name and password of a Framework Manager user who has the rights to perform this task.
Replace <file> with the name of the file to import or to create for the export.
The compliance auditor now supports the ability to archive, restore, and purge the audit records from the command line. These commands can be performed on the Framemaker Manager console machine or from a backup host. When executed from a backup host, a command is actually execute on the primary host.If a backup host is promoted to be a primary host, the archived database can be placed on the promoted manager and restored.
The secaudit command has the following syntax:
./unifi -n secaudit [list] [listarchive] [archive] [restore] [purge]
If you have not mapped your local account to a Framework Manager user (see Modify User: Native Maps), replace the -n option with -u <username> -p <password> options and specify the name and password of a Framework Manager user who has the rights to perform this task.
The secaudit command supports the following options: