Audit log
The audit log contains a record of actions performed on the appliance, which you can use for individual accountability. Because the logs are rolled over periodically to prevent them from getting too large, Hewlett Packard Enterprise recommends downloading the audit logs to monitor the actions being performed. You can also download the audit logs periodically to maintain a long-term audit history.
Each user has a unique logging ID per session, enabling you to follow a user’s trail in the audit log. Some actions are performed by the appliance and might not have a logging ID.
You must have Infrastructure administrator privileges to download the audit log.
For information on downloading the audit log from the UI, see Download audit logs.
A breakdown of an audit entry follows:
Token | Description |
|---|---|
Date/time | The date and time of the event |
Internal component ID | The unique identifier of an internal component |
Reserved | The organization ID. Reserved for internal use |
User domain | The login domain name of the user |
User name/ID | The user name |
Session ID | The user session ID associated with the message |
Task ID | The URI of the task resource associated with the message |
Client host/IP | The client (browser) IP address identifies the client machine that initiated the request |
Result | The result of the action, which can be one of the following values:
|
Action | A description of the action, which can be one of the following values: |
Severity | A description of the severity of the event, which can be one of the following values, listed in descending order of importance:
|
Resource category | For REST API category information, see the HPE OneView API Reference. |
Resource URI/name | The resource URI/name associated with the task |
Message | The output message that appears in the audit log |
Maintenance console entries
The audit log includes entries for all Maintenance console events except for viewing.