Audit logs in raw format

book

Article ID: 221406

calendar_today

Updated On:

Products

Security Analytics Security Analytics - VA

Issue/Introduction

Is it possible to export audit/system logs in raw format rather than in a CSV file?

Resolution

The raw audit logs are available in /var/log/audit/audit.log.  Also, /etc/syslogd.conf can be configured to send each audit log to an external syslog server.  This is unsupported but can be done.