[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]


Configuring an Enterprise Service Portal Audit Plug-In

The SRC software provides a sample event listener, DefaultAuditEventListener. You can use the sample listener, customize it, or use the information in the sample to create another audit plug-in. The sample event listener is in the SRC software distribution in the directory /SDX/doc/ent/plugindoc/net/juniper/smgt/ent/plugin. The sample listener sends output to a log file. See the documentation for the plug-in in the SRC software distribution in the folder /SDX/doc/ent/plugindoc or on the Juniper Networks Web site at

http://www.juniper.net/techpubs/software/management/sdx/api-index.html

If you create an audit plug-in, you add the plug-in class to the WAR file for the enterprise service portal.

Table 39 shows the common information that is provided by every enterprise service portal audit plug-in event.




Table 39: Common Audit Plug-In Information 
Information
Description

Manager DN

Distinguished name that identifies the manager's profile in the directory; for example:

cn=unimgr, enterprisename=jnpr, ou=local, retailername=default, o=users, o=umc

Manager principle

Manager's fully qualified log-in principle for logging in to the enterprise portal. For example, the equivalent principle for the Manager DN above is: unimgr@jnpr/local.default

Operation time

Time when the corresponding operation was successfully completed.

Table 40 describes the events that an audit plug-in listener can listen for and the information reported in those events.




Table 40: Events Reportable to the Audit Plug-In 
Event
IT Manager Action That Initiates Event
Information Reported

ManagerLoginEvent

Logs in to an enterprise service portal.

Common information only.

ManagerLogoutEvent

Logs out of an enterprise service portal.

Common information only.

SubscribeAuditEvent

Subscribes to a service.

Common information plus:

  • DN of the new subscription object in the directory.
  • Attributes of the new subscription, including sspState, sspAction, and parameterSubstitution.

UnsubscribeAuditEvent

Unsubscribes from a service.

Common information plus:

  • DN of the subscription object removed from the directory.
  • Attributes of the removed subscription, including sspState, sspAction, and parameterSubstitution.

SubscriberUpdateAuditEvent

Changes the parameterSubstitution attribute of a subscriber object, such as adding or removing a substitution from the IT manager's enterprise object.

Common information plus:

  • DN of the subscriber object that is changed.
  • Attributes changed in the operation, including the old values and new values of the attributes.

SubscriptionUpdateAuditEvent

Changes the parameterSubstitution attribute of a subscription object; suspends, resumes, activates, or deactivates a subscription.

Common information plus:

  • DN of the subscription object that is changed.
  • Old and new values of the changed attributes:
  • parameterSubstitution attribute when subscriber object is changed.
  • sspState attribute when subscription is suspended or resumed.
  • sspAction attribute when subscription is activated or deactivated.

ServiceOpStateAuditEvent

Changes the operational state of a session.

NOTE: Because changing the operational state of the session—such as dynamically activating or deactivating a subscription session—does not change the directory entry, the change is not persistent, and the subscription session returns to its administrative state after the subscriber's interface is restarted. Changes to the administrative state of a subscription are reported with the SubscriptionUpdateAuditEvent.

Common information plus:

  • DN of the subscriber that owns the subscription session. The subscriber must be a leaf in the subscriber tree in the enterprise scenario.
  • DN of the subscription object where the subscription session comes from.
  • Operational state of the session after the IT manager's action.

ExportAuditEvent

Exports a VPN.

Common information plus:

  • DN of VPN that is exported.
  • DN of the subscriber to which the VPN is exported.

UnexportAuditEvent

Cancels the export of a VPN.

Common information plus:

  • DN of VPN for which export is canceled.
  • DN of the subscriber for which export of the VPN was canceled.

Overview of Configuration for an Enterprise Service Portal Audit Plug-In

You must configure the properties for an enterprise service portal audit plug-in in configuration for an enterprise service portal. If you use the sample or create a plug-in based on the sample, use SDX Configuration Editor to configure the plug-in. If you customize the plug-in to use additional API properties, use an LDAP browser or SDX Admin to customize the plug-in.

Configuring the Sample Enterprise Service Portal Audit Plug-In

Use SDX Configuration Editor to configure properties for an enterprise service portal audit plug-in, also referred to as the Enterprise Service Portal audit plug-in, based on the sample.

Before you configure the properties, define the Java class for the plug-in. You can also configure the Java logging utility provided by JDK 1.4 to record the log messages. For more information about this utility, see

http://java.sun.com/j2se/1.4.1/docs/api/java/util/logging/FileHandler.html

To configure the audit plug-in:

  1. Start SDX Configuration Editor.

For information about using SDX Configuration Editor, see SRC-PE Getting Started Guide, Chapter 39, Using SDX Configuration Editor.

  1. Import the SRC system configuration from the directory.
  2. Open a file for an enterprise service portal:
  1. Click the EASP Audit Plug-In tab.

The EASP Audit Plug_In pane appears.

  1. Use the following descriptions to complete the fields in the Audit Plug-in area.
  2. Save the file.
  3. Export the SRC system configuration from the directory.

    NOTE: You can also use SDX Admin to modify Enterprise Service Portal audit plug-in properties. See Configuring a Customized Enterprise Service Portal Audit Plug-In.


Plug-in Class

Log Destination

Maximum File Size

Log File Count

Log File Append Mode

Configuring a Customized Enterprise Service Portal Audit Plug-In

If you have customized the Enterprise Service Portal audit plug-in to use additional properties in the API, you must configure the plug-in with an LDAP browser or SDX Admin. To do so:

  1. Start the LDAP browser or SDX Admin.
  2. Access the file I=EASP, ou=StaticConfiguration, ou=Configuration, o=Management, o=umc.
  3. Find the section that contains the properties with the prefix Plugin.EASPAudit.
  4. Modify the existing properties in the file.

Each field description in the previous section includes a property name for the existing properties.

  1. Add the properties that you included in the customized portal; be sure to include the prefix Plugin.EASPAudit for each property.
  2. Specify appropriate values for the custom properties.
  3. Save the file.


[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]