Page created: 12 Sep 2019
|
Page updated: 19 Mar 2020
| 1 min read
PingFederate 10.0 Product Software Deployment Method Product documentation Content Type Administrator Audience Logging User task
- Edit <pf_install>/pingfederate/server/default/conf/log4j2.xml.
-
Under the
Security Audit log : CEF Formatted syslog appendersection, uncomment one of the preset appender configurations:-
SecurityAuditToCEFSyslog(aSocketappender) -
SecurityAuditToCEFFile(aRollingFileappender)
Note:The
SecurityAuditToCEFSyslogSocketappender is followed by two related appenders:PingFailoverandRollingFile. Together, they create a running audit-cef-syslog-failover.log file in the log directory in the event that CEF logging fails for any reason. Both appenders must also be enabled (uncommented).Tip:Review inline comments and notes in the log4j2.xml file for more information about each appender.
-
-
If you are configuring the
SecurityAuditToCEFSyslogSocketappender, replace the placeholder parameter values for the syslog host. -
If you are configuring the
SecurityAuditToCEFSyslogSocketappender. uncomment thePingFailoverappender reference (<appender-ref ref="SecurityAuditToCEFSyslog-FAILOVER"/>) from the followingLoggerelements located under theLoggerssection:-
org.sourceid.websso.profiles.sp.SpAuditLogger(Browser SSO SP and adapter-to-adapter) -
org.sourceid.websso.profiles.idp.IdpAuditLogger(Browser SSO IdP and adapter-to-adapter) -
org.sourceid.websso.profiles.idp.AsAuditLogger(OAuth authorization server) -
org.sourceid.websso.profiles.idp.ClientRegistrationAuditLogger(Dynamic Client Registration) -
org.sourceid.wstrust.log.STSAuditLogger(WS-Trust STS, IdP and/or SP)
Important:As indicated in the IMPORTANT comments for the loggers, you must also remove some of the existing appender references.
-