5.1 Configuring Novell BorderManager for Novell Audit

Novell BorderManager is not enabled for NovellAudit by default. You must configure it first:

  1. Ensure that Novell Audit is properly installed and configured. This includes installing a Secure Logging Server and installing the NetWare Platform Agent on each BorderManager proxy server that will be reporting events to Novell Audit.

  2. Ensure that the Platform Agents are correctly configured to communicate with the Secure Logging Server. On each BorderManager proxy server that will be reporting events to Novell Audit, check for the file sys:\etc\logevent.cfg. Change the value of the LogHost parameter to the IP address or DNS name of your Secure Logging Server.

  3. To simplify Secure Logging Server setup, an NCF file is provided that prepares Novell Audit to receive BorderManager 3.9 events. This file is located at sys:\etc\proxy\naudit\runaud.ncf on any server where BorderManager has been installed. Open this file in a text editor and enter a valid user name and password with Admin rights to the Secure Logging Server. Use the example format shown in the NCF file.

    This only needs to be done once, no matter how many BorderManager proxy servers will be reporting events to Novell Audit.

  4. Do one of the following:

    • If the Secure Logging Server is set up on the same machine where the edited version of runaud.ncf exists, go to the server's System Console, type sys:\etc\proxy\naudit\runaud.ncf and press Enter.

    • If the Secure Logging Server on Another NetWare server, copy sys:\etc\proxy\naudit\runaud.ncf to the NetWare server where the Secure Logging Server is installed and run the NCF file from the System Console.

    • If the Secure Logging Server is on Windows, copy sys:\etc\proxy\naudit\runaud.ncf to the Windows server where the Secure Logging Server is installed. Rename the file to runaud.bat and run it.

    • If the Secure Logging Server is on other platforms, see the Novell Audit product documentation for instructions on how to set up new applications on other platforms supported by the Secure Logging Server.

  5. Restart the Secure Logging Server.

  6. On each BorderManager proxy server that will be reporting events to Novell Audit, use a text editor to add the following in the sys:\etc\proxy\proxy.cfg file:

    [Extra Configuration] EnableNsureAuditLogging=1

  7. Restart the BorderManager servers.