Help banner

Novell Audit Overview

Novell® Audit is a centralized, cross-platform auditing service. It collects event data from multiple applications across multiple platforms and writes the data to a single, non-repudiable data store. Also included are query and report generating tools, so you can evaluate the information in your data stores to determine resource access, usage patterns, and overall compliance with organizational policies and regulations. Finally, Novell Audit provides real-time notifications and real-time monitoring so you can assess and act on events as they occur.

Novell Audit uses a client/server model to report events from logging applications to the Secure Logging Server. The Platform Agent, the client piece, receives all log data from system applications. It then securely transmits this data to the Secure Logging Server. The Secure Logging Server manages the flow of information to and from the Novell auditing system. It receives incoming events and requests from the Platform Agents; logs information to the data store; monitors designated events; and provides filtering and notification services. It can also be configured to automatically reset critical system attributes according to a specified policy.

The Platform Agent is not represented in eDirectory™. Its configuration settings are saved in a simple, text-based file (logevent.cfg) that is stored locally on every server or workstation running applications that log events to Novell Audit. For more information on configuring the Platform Agent, see the Novell Audit Administration Guide.

The Secure Logging Server, on the other hand, is configured through eDirectory. This help system contains the information you need to configure the Secure Logging Server to log information to your data stores and provide filtering and notification services.

This help system also provides the information you need to create and run queries on your data stores.

Related Topics

Novell Audit Help

Configuring the Secure Logging Server

Running Queries and Event Verifications

A trademark symbol (®, ™, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party trademark. For information on trademarks, see Legal Notices.

Close