31.2 Enabling Identity Server Audit Events

All user and administrator actions can be logged to Novell Audit. You can generate a Novell Audit logging event to indicate whether authentications are successful or unsuccessful. The following steps assume that you have already set up Novell Audit on your network. For more information, see Section 31.1, Configuring Access Manager for Novell Auditing

  1. In the Administration Console, click Access Manager > Identity Server > Servers > Edit > Logging.

  2. In the Novell Audit Logging section, select Enabled.

  3. Select the events for notification.

    Select All: Select this option for all events. Otherwise, select one or more of the following:

    Event

    Description

    Login Provided

    Generated when an identity provider sends authentication to a service provider. Role assignment audit events are included in authentication audit events for the identity server.

    Login Provided Failure

    Generated when an identity provider attempts to send authentication to a service provider but fails.

    Login Consumed

    Generated when the Identity Server is authenticated either locally or by an external identity provider. Role assignment audit events are included in authentication audit events for the identity server.

    Login Consumed Failure

    Generated when the Identity Server initiates authentication, but the process fails.

    Logout Provided

    Generated when an identity provider sends a logout request to a service provider that it has authenticated.

    Logout Local

    Generated when the Identity Server receives a command to log out from the user.

    Federation Request Sent

    Generated when a service provider attempts to federate with an identity provider.

    Federation Request Handled

    Generated by the Identity Server when processing a request for federation.

    Defederation Request Sent

    Generated by the identity provider when a request for defederation is sent to another provider.

    Defederation Request Handled

    Generated when the Identity Server processes a request for defederation.

    Register Name Request Handled

    Generated when the Identity Server processes a request for changing a name identifier.

    Attribute Query Request Handled

    Generated by the Identity Server when processing an attribute request from a service provider.

    Web Service Query Handled

    Causes a Web service query request to be sent to an identity provider.

    Web Service Modify Handled

    Causes a Web service modify request to be sent to an identity provider.

    User Account Provisioned

    Generated by the Identity Server when functioning as an identity consumer and when an account has been provisioned.

    User Account Provisioned Failure

    Generated by the Identity Server when functioning as an identity consumer and when account provisioning has failed.

    Ldap Connection Lost

    Generated when the LDAP connection is lost.

    Ldap Connection Reestablished

    Generated when the LDAP connection is reestablished.

    Server Started

    Generated when the server gets a start command from the server communications module.

    Server Stopped

    Generated when the server gets a stop command from the server communications module.

    Server Refreshed

    Generated when the server gets a refresh command from the server communications module.

    Intruder Lockout Detected

    Generated when an attempt to log in as a particular user with an invalid password has occurred more times than is allowed by the directory.

    Component Log Severe Messages

    Logged for all component messages with level of Severe.

    Component Log Warning Messages

    Logged for all component messages with level of Warning.

  4. Click Apply, then OK.

  5. Click Servers > Update Servers.

    Restart the Novell Audit server.