Management Event Options

These options provide methods to create, maintain, export, and import role-based policies into Privilege Management for Unix and Linux.

  • pbdbutil --evt [<options>] [ <file> <file> ...]
  • -s { json param }: Search Management event records
  • Record entities:
    • hostname
    • evtname
    • service
    • by
    • severity
    • before/after/then progname
    • version
    • arch
    • taxonomy

Records can be searched using the above entities and are matched as wildcards.

-s '{ "taxonomy" : "chgmgt" } 'Display all Change Management Events
-s '{ "taxonomy" : "chgmgt", "hostname" : "host1" } ' Display all Change Management Events for host1
<-S|--searchevt> { json parameters } This option provides a method of retrieving change management events from the change management database.
Retrieve all change management events
-S '{ "taxonomy" : "chgmgt" }'
{"hostname" : "pbuild", "evtname" : "file_import", "service" : "pbdbutil9.0.0-01_debug", "who" : "ctaylor", "severity" : 16, "progname" : "pbdbutil9.0.0-01_debug", "version" : "9.0.0-01_debug", "arch" : "x86_64_ linuxA", "data" : {"msg" : "foo, bar", "fname" : "/opt/pbul/policies/pb.conf, conf","version" : 4, "sid" : 4995, "pid" : 31976, "uid" : 0}, "utc" : "2014-11-1109 : 19 : 28"}
{"hostname" : "pbuild", "evtname" : "tag_file", "service" : "pbdbutil9.0.0- 01_debug", "who" : "ctaylor", "severity" : 16, "progname" : "pbdbutil9.0.0- 01_debug", "version" : "9.0.0-01_debug", "arch" : "x86_64_linuxA", "data" :{"fname" : "/opt/pbul/policies/pb.conf", "tag" : "foo", "version" : -1, "sid" : 4995,"pid" : 31979, "uid" : 0}, "utc" : "2014-11-11 09 : 19 : 30"}
Retrieve change management events for host1 only
-S '{ "taxonomy" : "chgmgt" , "hostname" : "host1" }'