Page created: 12 Sep 2019
|
Page updated: 19 Mar 2020
| 1 min read
PingFederate 10.0 Product Software Deployment Method Product documentation Content Type Administrator Audience Logging User task
- Edit <pf_install>/pingfederate/server/default/conf/log4j2.xml.
-
Under the
Security Audit log : CEF Formatted syslog appender
section, uncomment one of the preset appender configurations:-
SecurityAuditToCEFSyslog
(aSocket
appender) -
SecurityAuditToCEFFile
(aRollingFile
appender)
Note:The
SecurityAuditToCEFSyslog
Socket
appender is followed by two related appenders:PingFailover
andRollingFile
. Together, they create a running audit-cef-syslog-failover.log file in the log directory in the event that CEF logging fails for any reason. Both appenders must also be enabled (uncommented).Tip:Review inline comments and notes in the log4j2.xml file for more information about each appender.
-
-
If you are configuring the
SecurityAuditToCEFSyslog
Socket
appender, replace the placeholder parameter values for the syslog host. -
If you are configuring the
SecurityAuditToCEFSyslog
Socket
appender. uncomment thePingFailover
appender reference (<appender-ref ref="SecurityAuditToCEFSyslog-FAILOVER"/>
) from the followingLogger
elements located under theLoggers
section:-
org.sourceid.websso.profiles.sp.SpAuditLogger
(Browser SSO SP and adapter-to-adapter) -
org.sourceid.websso.profiles.idp.IdpAuditLogger
(Browser SSO IdP and adapter-to-adapter) -
org.sourceid.websso.profiles.idp.AsAuditLogger
(OAuth authorization server) -
org.sourceid.websso.profiles.idp.ClientRegistrationAuditLogger
(Dynamic Client Registration) -
org.sourceid.wstrust.log.STSAuditLogger
(WS-Trust STS, IdP and/or SP)
Important:As indicated in the IMPORTANT comments for the loggers, you must also remove some of the existing appender references.
-