Audit log

This topic describes the contents of the audit log.

The administrative audit log contains all administrative actions issued to the SAN File System. It contains a record of every command issued by a SAN File System administrator, from either the administrative command-line interface or the SAN File System console, that changes the state of the metadata server in some way.

Each administrative server has its own audit log. If, from the master metadata server, you display the audit log from either the administrative command-line interface or the SAN File System console, all audit logs on all engines in the cluster are consolidated into a single view.

Fields

Log entries contain the following fields:

Timestamp
A date followed by a local time.
Severity level
Set to a value of Informational (console) if the command succeeded. Otherwise, it is set to a value of Error.
Message ID
A unique identifier for the message.
Message type
Set to Audit. This field is contained in the audit log, but it is not displayed in the consolidated view.
Metadata server ID
A unique identifier for the metadata server on which the command was issued.
Message
Contains the user name of the SAN File System administrator who issued the command followed by a functional replica of the log message itself.

The following example shows a message from the consolidated view of the audit log that is displayed through the administrative command-line interface:

2003-04-21 18:36:32  INFORMATIONAL  HSTAD0083I  A  mds_engine_0  
User Name: root  Command Name: MasterServiceAddServer  
Parameters: SYSTEMCREATIONCLASSNAME=STC_Cluster 
SYSTEMNAME=testnode CREATIONCLASSNAME=STC_MasterService 
NAME=MasterService CLUSTERPORT=10001 IP=9.29.25.136  
Command Succeeded.

Parent topic: Metadata server logs

Related concepts
Logs and traces

Related tasks
Viewing logs

Related reference
catlog

Library | Support | Terms of use | Feedback
(C) Copyright IBM Corporation 2003, 2004. All Rights Reserved.
IBM TotalStorage SAN File System v2.2