Modifying Default Values


Audit Agent Policy

To modify the default values set for the Audit agent policy:

  1. In ConsoleOne, locate the NAASAgentPolicy object in the NAAS container. The container will be just below the partition root object.

    2.

  2. Right-click the object > click Properties.

    3.

  3. Go to the Policy Content tab.

    4.

  4. Modify the values there according to your requirements.

    NOTE:  The Commit Period must be greater than 30 seconds. The Commit Fragment Size should be greater than 300 bytes. The Cache Size should be greater than 1 KB.

    These changes are applicable to all agents in the partition. If you want to configure different policies for different agents, refer to Configuring the Agent and the Server instructions.

    5.

Audit Server Policy

To modify the default values set for the Audit server policy:

  1. In ConsoleOne, locate the NAASServerPolicy object in the NAAS container. The container will be just below the partition root object.

    2.

  2. Right-click the object > click Properties.

    3.

  3. Go to the Policy Content tab.

    4.

  4. Modify the values there according to your requirements.

    These changes are applicable to all servers in the partition. If you want to configure different policies for different servers, refer to Configuring the Agent and the Server instructions.

    5.

Audited Services

By default, no events are audited.

To activate auditing for specific events and services:

  1. In ConsoleOne, select the specific Event Policy object from the following Event Policy objects. These objects are in the NAAS container just below the partition root.

    • DSEventPolicy
    • FSEventPolicy
      •
    • NSSEventPolicy
      •

  2. Right-click the object > click Properties

    3.

  3. Go to the Policy Content tab.

    4.

  4. Modify the action flag and filtering condition for the events, according to your requirements.

    These changes are applicable to all audited objects in the partition. If you want to configure different policies for different audited objects, refer to Manually Configuring Novell Advanced Audit Service chapter.

    5.

Auditor Rights

A user's rights to the audit data are controlled by the rights to the naasTrail attribute in eDirectory. The default configuration utility grants the Auditor rights to view the audit data for the entire partition.To enable auditor rights:

  1. In ConsoleOne, select the partition root object.

    2.

  2. Right-click the object > select Trustees of this Object.

    3.

  3. Select the Auditor from the trustee list > click Assigned Rights.

    4.

  4. From the Property list, select naasTrail and check the Read right from the Rights list > click OK.

    5.

To grant an Auditor rights to the audit trail for a particular object:

  1. In ConsoleOne, select the required object.

    2.

  2. Right-click the object > select Trustees of this Object > click Add Trustee.

    3.

  3. Browse to the Auditor user object, select the User object > click OK.

    4.

  4. Click Add Property.

    5.

  5. Check Show all Properties.

    6.

  6. Select the naasTrail attribute > click OK.

    7.

  7. Check the Read right > click OK.

    8.

  8. Apply the changes.

    9.


Previous | Next