ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How to view backup files of CA Control Minder Audit log.

book

Article ID: 20573

calendar_today

Updated On:

Products

CA Virtual Privilege Manager CA Privileged Identity Management Endpoint (PIM) CA Privileged Access Manager (PAM)

Issue/Introduction

Description:

How to edit/read backup files of CA Control Minder Audit log.

Example file name - seos.audit.bak.26-Mar-2013-00:00:00

<Please see attached file for image>

Figure 1

-----

The audit log for CA Control Minder is (seos.audit) and the size of the file can be controlled by the audit_size token at logmgr section in the seos.ini file on UNIX machine.

Location is /opt/CA/AccessControl

# vi seos.ini ..
[logmgr]...
; Minimum Value: 50KB
audit_size = 10240 (Default )

<Please see attached file for image>

Figure 2

Solution:

Follow the steps to read the .bak files created by CA Control Minder.

  1. Log in as root
  2. Go to the following path (/opt/CA/AccessControl/log )
  3. Give the path of seaudit location (/opt/CA/ AccessControl /bin/seaudit) and add
    the .bak file name that you are trying to extract.

    [email protected] # /opt/CA/AccessControl/bin/seaudit -a -fn seos.audit.bak.12-Apr-2013-00:00:00

  4. Check the screenshot:

    <Please see attached file for image>

    Figure 3

Environment

Release:
Component: SEOSPP

Attachments

1558703787249000020573_sktwi1f5rjvs16qb8.gif get_app
1558703785307000020573_sktwi1f5rjvs16qb7.gif get_app
1558703776178000020573_sktwi1f5rjvs16qb6.gif get_app
Powered by Wolken Software