Features of the DCE Audit Service
The DCE Audit Service has the following features:
· An audit daemon (auditd) performs the logging of audit records based on specified criteria.
· Application programming interfaces (APIs) can be used as part of application server programs to record audit events. These APIs can also be used to create tools that can
analyze the audit records.
· An administrative command interface to the audit daemon directs the daemon in selecting the events that are going to be recorded based on certain criteria. This interface
is accessed through the DCE control program (dcecp).
· An event classification mechanism allows the logical grouping of a set of events for ease of administration.
· Audit records can be directed to logs or to the console.
|