PingAuthorize

Configuring policy query audit logging with dsconfig

Steps

  1. Enable the file-based Policy Query Logger.

    dsconfig set-log-publisher-prop
  --publisher-name "Policy Query Logger"
  --set enabled:true

  2. Use the dsconfig set-log-publisher-prop command with the following arguments:

    dsconfig set-log-publisher-prop
  --publisher-name "Policy Query Logger"
  --set include-query-permutations:true