Auditing Overview
Currently the Web Studio does not support the Auditing mechanism.
Fabric has a robust Auditing mechanism that logs various activities running on Fabric. These can be logins, Web Service calls, and various Fabric commands.
Two major Auditing features can be controlled:
- Filtering strategies: provides full flexibility over the type of activities that are introduced to the Auditing mechanism. For instance, you may audit the Web Service calls only, without impacting the performance of other activities but with saving a lot of disk space.
- Persistence strategies: defines the reporting channel of the Auditing mechanism. Examples for such channels are Cassandra (default), Kafka, files, etc.
The Auditing mechanism can be configured via the [audit] and [audit_kafka_producer] sections of the config.ini. By default, the persistence strategy is Cassandra, and the data is written into the k2_auditing table of the k2audit keyspace.
Auditing Reporting Structure
When an activity is logged by the Fabric Auditing mechanism, it has the following structure:
For example, when the user performs login and authentication to the Web Framework, the activity is audited as follows:
- Action = LOGIN
- Protocol = HTTP/1.1
- Query = LDAP/SAML/FABRIC
When the user performs login to the Fabric console, it is audited as follows:
- Action = LOGIN
- Protocol = DRIVER
- Query = LDAP/FABRIC
Logouts are not audited.
Click for more information about the User Identification and Access Management Auditing.
Turning Auditing On/Off
By default, Auditing is set to OFF. To enable Auditing in Fabric, set AUDIT=ON in the config.ini file and then restart Fabric.
AUDIT=ON
Auditing Overview
Currently the Web Studio does not support the Auditing mechanism.
Fabric has a robust Auditing mechanism that logs various activities running on Fabric. These can be logins, Web Service calls, and various Fabric commands.
Two major Auditing features can be controlled:
- Filtering strategies: provides full flexibility over the type of activities that are introduced to the Auditing mechanism. For instance, you may audit the Web Service calls only, without impacting the performance of other activities but with saving a lot of disk space.
- Persistence strategies: defines the reporting channel of the Auditing mechanism. Examples for such channels are Cassandra (default), Kafka, files, etc.
The Auditing mechanism can be configured via the [audit] and [audit_kafka_producer] sections of the config.ini. By default, the persistence strategy is Cassandra, and the data is written into the k2_auditing table of the k2audit keyspace.
Auditing Reporting Structure
When an activity is logged by the Fabric Auditing mechanism, it has the following structure:
For example, when the user performs login and authentication to the Web Framework, the activity is audited as follows:
- Action = LOGIN
- Protocol = HTTP/1.1
- Query = LDAP/SAML/FABRIC
When the user performs login to the Fabric console, it is audited as follows:
- Action = LOGIN
- Protocol = DRIVER
- Query = LDAP/FABRIC
Logouts are not audited.
Click for more information about the User Identification and Access Management Auditing.
Turning Auditing On/Off
By default, Auditing is set to OFF. To enable Auditing in Fabric, set AUDIT=ON in the config.ini file and then restart Fabric.
AUDIT=ON
