Configure the audit service
You access the audit logging configuration over REST at the openidm/config/audit context path and in the conf/audit.json file. To configure the audit service, edit the audit.json file or use the admin UI. Select Configure > System Preferences, and click the Audit tab. The fields on that form correspond to the configuration parameters described in this section.
You can configure the following major options for the audit service:
- Which audit handlers are used
-
Audit event handlers are responsible for handling audit events. They are listed in the
availableAuditEventHandlersproperty in yourconf/audit.jsonfile. - Which handler is used for queries
-
You must configure one audit event handler to manage queries on the audit logs.
- What events are logged
-
The events that are logged are configured in the
eventslist for each audit event handler. - Track transactions across products
-
If you use more than one ForgeRock product, you can specify that a common
transactionIdbe used to track audit data across products. Edit yourconf/system.propertiesfile and set:org.forgerock.http.TrustTransactionHeader=true