Audit Activity Using BeyondInsight for Unix & Linux

On the Audit page, you can view event logs, replay IO logs, and leave feedback about IO logs. Hosts can be filtered by Hostname and IP Address.

View Event Logs in BeyondInsight for Unix & Linux

You can view high level details of a log and search for specific details.

To view event logs:

  1. Go to the Audit page.
  2. In the Hostname list, select a server entry.
  3. On the Server Details page, select Event Log.
  4. Select a database or logfile from the Event Source dropdown menu and filter as necessary.
    • When a database is selected, the following filtering and sorting options apply:
      • Filtering options:
        • Date Range
        • Submit User
        • Run Command
        • Event Type
        • Run Host
        • Submit Host
        • Run User
      • Sorting options:
        • Date/Time
        • Submit User
        • Run Command
        • Event
        • Run Host
        • Submit Host
        • Run User
        • Exit Status
    • When a logfile is selected, the following filtering options apply:
      • Filtering options:
        • Date Range
        • Event Log File
  5. Select a result to view the contents of the event.

As of Privilege Management for Unix and Linux 10.3, event log information is retrieved from databases. Previous versions of Privilege Management for Unix and Linux support log files.

A minimum version of Privilege Management for Unix and Linux 10.0 is required to view log contents. In earlier versions, the log must be downloaded to view.