-
Type:
Improvement
-
Status: Closed
-
Priority:
Major
-
Resolution: Not a defect
-
Affects Version/s: 13.5.0, 13.5.2, 5.5.1
-
Fix Version/s: None
-
Component/s: audit logging, configurator, debug logging, log
-
Support Ticket IDs:
Problem Description:
Customer is trying to capture OpenAm Configuration changes to Audit tables. When customer make any changes in realm or configuration changes are not captured in Before Object and After Object fields are null in am_auditconfig table. Even in the audit log of AM and DS audit logging that has AM as it data store/config store
Business Case: Customer wants possibly capture that information that will be great as this way customer ave the proof, what was done before the change and what it became after the change.
Current behavior:
After making an authentication module optional. The audit logs only records the after change
13/Dec/2018:13:56:37 -0600; conn=8; op=136 dn: ou=ldapService,ou=Configurations,ou=default,ou=OrganizationConfig,ou=1.0,ou=iPlanetAMAuthConfiguration,ou=services,dc=example,dc=com changetype: modify replace: sunKeyValue sunKeyValue: iplanet-am-auth-configuration=<AttributeValuePair><Value>DataStore OPTIONAL </Value></AttributeValuePair> - replace: modifiersName modifiersName: cn=Directory Manager,cn=Root DNs,cn=config - replace: modifyTimestamp modifyTimestamp: 20181213195637Z
This is the audit log located in (if AM have DS as config store)
/opendj/logs
Please also review the audit.am_auditconfig