Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-8428

WPA records audit logs to a local file although "Audit Log Location" is set to REMOTE

    XMLWordPrintable

    Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • Agents-4.0.1
    • Agents-4.1.0, Agents-5.0
    • documentation, web agents
    • OpenAM Web Agent for Apache Server 2.4.x
       Version: 4.0.1-RC2
       Revision: 5b3b9c4
       Build machine: delacroix
       Build date: Feb 23 2016 11:31:42
    • Rank:
      1|hzr1vj:

      Description

      WPA records audit logs to a local file although "Audit Log Location" is set to REMOTE

      Steps to reproduce:

      1.) Set the audit log to remote / <AGENT PROFILE> / Global / Audit:

      • Audit Access Types = LOG_BOTH
      • Audit Log Location = REMOTE

      2.) Create a policy for the index.html page
      3.) Observe audit log file on agent machine:
      /web_agents/apache24_agent/instances/agent_1/logs/audit/audit.log
      4.) Hit the index page and login with an user

      Observed result

      In the WPA audit log file was added record

      2016-02-24 14:40:53.699 +0000   AUDIT [0x7f7a71d0a700:21088] user demo (172.25.1.18) was allowed access to http://perf-openam2.internal.forgerock.com:81/index.html
      2016-02-24 14:40:53.817 +0000   AUDIT [0x7f7a71309700:21088] user demo (172.25.1.18) was denied access to http://perf-openam2.internal.forgerock.com:81/favicon.ico
      

      Expected result

      The record should not be added into WPA audit log, only on AM machine

        Attachments

          Activity

            People

            chris.lee Chris Lee [X] (Inactive)
            richard.hruza Richard Hruza
            Richard Hruza Richard Hruza
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: