Audit Remote Server - Oracle Solaris 11.1 Administration: Security Services

Skip Navigation Links
Exit Print View
	Oracle Solaris 11.1 Administration: Security Services Oracle Solaris 11.1 Information Library

Oracle Technology Network

Document Information

Part I Security Overview

1. Security Services (Overview)

Part II System, File, and Device Security

2. Managing Machine Security (Overview)

3. Controlling Access to Systems (Tasks)

4. Virus Scanning Service (Tasks)

5. Controlling Access to Devices (Tasks)

6. Verifying File Integrity by Using BART (Tasks)

7. Controlling Access to Files (Tasks)

Part III Roles, Rights Profiles, and Privileges

8. Using Roles and Privileges (Overview)

9. Using Role-Based Access Control (Tasks)

10. Security Attributes in Oracle Solaris (Reference)

Part IV Cryptographic Services

11. Cryptographic Framework (Overview)

12. Cryptographic Framework (Tasks)

13. Key Management Framework

Part V Authentication Services and Secure Communication

14. Using Pluggable Authentication Modules

15. Using Secure Shell

16. Secure Shell (Reference)

17. Using Simple Authentication and Security Layer

18. Network Services Authentication (Tasks)

Part VI Kerberos Service

19. Introduction to the Kerberos Service

20. Planning for the Kerberos Service

21. Configuring the Kerberos Service (Tasks)

22. Kerberos Error Messages and Troubleshooting

23. Administering Kerberos Principals and Policies (Tasks)

24. Using Kerberos Applications (Tasks)

25. The Kerberos Service (Reference)

Part VII Auditing in Oracle Solaris

26. Auditing (Overview)

27. Planning for Auditing

28. Managing Auditing (Tasks)

29. Auditing (Reference)

Audit Service Man Pages

Rights Profiles for Administering Auditing

Auditing and Oracle Solaris Zones

Audit Configuration Files and Packaging

Audit Class Syntax

Audit Remote Server

Audit Policies for Asynchronous and Synchronous Events

Process Audit Characteristics

Conventions for Binary Audit File Names

Audit Record Structure

Audit Record Analysis

Audit Token Formats

argument Token

attribute Token

exec_args Token

exec_env Token

ip address Token

ip port Token

IPC_perm Token

path_attr Token

privilege Token

process Token

sequence Token

subject Token

trailer Token

use of authorization Token

use of privilege Token

xclient Token

zonename Token

Audit Remote Server

The Audit Remote Server (ARS) receives audit records over a secure link from audited systems and stores the records.

The reception relies on the following being configured:

A Kerberos realm with specific audit principals and a GSS-API mechanism
The ARS with at least one configured and active connection group
At least one audited system in the connection group and a configured and active audit_remote plugin

A connection group is specified in the group property of the ARS. For file management, group can limit the size of an audit file and specify the minimum free space. The primary reason to specify different connection groups is to specify different storage locations on the ARS, as shown in Example 28-19.

For more information about ARS, see the ars(5) man page. For ARS configuration information, see the -setremote options in the auditconfig(1M) man page.

To configure the audited systems, see the audit_remote(5) man page and the -setplugin option in the auditconfig(1M) man page.

Copyright © 2002, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices

Previous

Next