diff options
| author | Christina Fu <cfu@redhat.com> | 2014-04-09 09:37:32 -0700 |
|---|---|---|
| committer | Christina Fu <cfu@redhat.com> | 2014-04-11 15:28:46 -0700 |
| commit | f0b112fa8d859056aaa729cda0761a1786987088 (patch) | |
| tree | bc3fd0e86495ad861aea6fa781db7c07f8d4a0d3 /base/server/cmsbundle/src | |
| parent | 1f1c9f7c0187f2755463b68c4f42a05cc47a81f8 (diff) | |
| download | pki-f0b112fa8d859056aaa729cda0761a1786987088.tar.gz pki-f0b112fa8d859056aaa729cda0761a1786987088.tar.xz pki-f0b112fa8d859056aaa729cda0761a1786987088.zip | |
Trac ticket # 884 TPS Rewrite: Audit and other Logging
http://pki.fedoraproject.org/wiki/TPS_Rewrite#Audit_Messages
Diffstat (limited to 'base/server/cmsbundle/src')
| -rw-r--r-- | base/server/cmsbundle/src/LogMessages.properties | 59 |
1 files changed, 59 insertions, 0 deletions
diff --git a/base/server/cmsbundle/src/LogMessages.properties b/base/server/cmsbundle/src/LogMessages.properties index eb4d88d44..54dd7aaaf 100644 --- a/base/server/cmsbundle/src/LogMessages.properties +++ b/base/server/cmsbundle/src/LogMessages.properties @@ -2447,6 +2447,65 @@ LOGGING_SIGNED_AUDIT_SYMKEY_GEN_REQUEST_PROCESSED_6=<type=SYMKEY_GENERATION_REQU # ClientKeyID is the ID of the symmetirc key to be generated and archived # LOGGING_SIGNED_AUDIT_SYMKEY_GENERATION_REQUEST_4=<type=SYMKEY_GENERATION_REQUEST>:[AuditEvent=SYMKEY_GENERATION_REQUEST][SubjectID={0}][Outcome={1}][GenerationRequestID={2}][ClientKeyID={3}] symkey generation request made +# +# LOGGING_SIGNED_AUDIT_TOKEN_CERT_ENROLLMENT +# - used for TPS when token certificate enrollment request is made +# +LOGGING_SIGNED_AUDIT_TOKEN_CERT_ENROLLMENT_9=<type=TOKEN_CERT_ENROLLMENT>:[[AuditEvent=TOKEN_CERT_ENROLLMENT][SubjectID={0}][CUID={1}][MSN={2}][Outcome={3}][tokenType={4}][AppletVersion={5}][KeyVersion={6}][Serial={7}][CA_ID={8}] token certificate enrollment request made +# +# LOGGING_SIGNED_AUDIT_TOKEN_CERT_RENEWAL +# - used for TPS when token certificate renewal request is made +# +LOGGING_SIGNED_AUDIT_TOKEN_CERT_RENEWAL_9=<type=TOKEN_CERT_RENEWAL>:[[AuditEvent=TOKEN_CERT_RENEWAL][SubjectID={0}][CUID={1}][MSN={2}][Outcome={3}][tokenType={4}][AppletVersion={5}][KeyVersion={6}][Serial={7}][CA_ID={8}] token certificate renewal request made +# +# LOGGING_SIGNED_AUDIT_TOKEN_CERT_STATUS_CHANGE_REQUEST +# - used when a token certificate status change request (e.g. revocation) +# is made (before approval process) +# CUID must be the last token that the certificate was associated with +# CertSerialNum must be the serial number (in hex) of the certificate to be revoked +# RequestType must be "revoke", "on-hold", "off-hold" +# +LOGGING_SIGNED_AUDIT_TOKEN_CERT_STATUS_CHANGE_REQUEST_7=<type=TOKEN_CERT_STATUS_CHANGE_REQUEST>:[AuditEvent=TOKEN_CERT_STATUS_CHANGE_REQUEST][SubjectID={0}][Outcome={1}][tokenType={2}][CUID={3}][CertSerialNum={4}][RequestType={5}][CA_ID={6}] token certificate revocation/unrevocation request made +# +# LOGGING_SIGNED_AUDIT_TOKEN_PIN_RESET_REQUEST +# - used when token pin reset request is made +LOGGING_SIGNED_AUDIT_TOKEN_PIN_RESET_REQUEST_7=<type=TOKEN_PIN_RESET_REQUEST>:[AuditEvent=TOKEN_PIN_RESET_REQUEST][SubjectID={0}][CUID={1}][MSN={2}][Outcome={3}][tokenType={4}][AppletVersion={5}][KeyVersion={6}] token pin reset request made +# +# LOGGING_SIGNED_AUDIT_TOKEN_FORMAT_REQUEST +# - used when token format request is made +LOGGING_SIGNED_AUDIT_TOKEN_FORMAT_REQUEST_7=<type=TOKEN_FORMAT_REQUEST>:[AuditEvent=TOKEN_FORMAT_REQUEST][SubjectID={0}][CUID={1}][MSN={2}][Outcome={3}][tokenType={4}][AppletVersion={5}][KeyVersion={6}] token format request made +# +# LOGGING_SIGNED_AUDIT_TOKEN_APPLET_UPGRADE +# - used when token apple upgrade occurs +LOGGING_SIGNED_AUDIT_TOKEN_APPLET_UPGRADE_8=<type=TOKEN_APPLET_UPGRADE>:[AuditEvent=TOKEN_APPLET_UPGRADE][SubjectID={0}][CUID={1}][MSN={2}][Outcome={3}][tokenType={4}][KeyVersion={5}][oldAppletVersion={6}][newAppletVersion={7}] token applet upgrade +# +# LOGGING_SIGNED_AUDIT_TOKEN_KEY_CHANGEOVER +# - used when token applet upgrade occurs +LOGGING_SIGNED_AUDIT_TOKEN_KEY_CHANGEOVER_8=<type=TOKEN_KEY_CHANGEOVER>:[AuditEvent=TOKEN_KEY_CHANGEOVER][SubjectID={0}][CUID={1}][MSN={2}][Outcome={3}][tokenType={4}][AppletVersion={5}][oldKeyVersion={6}][newKeyVersion={7}] token key changeover +# +# LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_GENERAL +# - used when configuring general TPS +# ParamNameValPairs must be a name;;value pair +# (where name and value are separated by the delimiter ;;) +# separated by + (if more than one name;;value pair) of config params changed +# --- secret component (password) MUST NOT be logged --- +# +LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_GENERAL_3=<type=CONFIG_TOKEN_GENERAL>:[AuditEvent=CONFIG_TOKEN_GENERAL][SubjectID={0}][Outcome={1}][ParamNameValPairs={2}] TPS token configuration parameter(s) change +# +# LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_PROFILE +# - used when configuring token profile +# ParamNameValPairs must be a name;;value pair +# (where name and value are separated by the delimiter ;;) +# separated by + (if more than one name;;value pair) of config params changed +# --- secret component (password) MUST NOT be logged --- +# +LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_PROFILE_3=<type=CONFIG_TOKEN_PROFILE>:[AuditEvent=CONFIG_TOKEN_PROFILE][SubjectID={0}][Outcome={1}][ParamNameValPairs={2}] token profile configuration parameter(s) change +# +# LOGGING_SIGNED_AUDIT_TOKEN_STATE_CHANGE +# - used when token state changed +# +LOGGING_SIGNED_AUDIT_TOKEN_STATE_CHANGE_5=<type=TOKEN_STATE_CHANGE>:[AuditEvent=TOKEN_STATE_CHANGE][SubjectID={0}][Outcome={1}][CUID={2}][oldState={3}][newState={4}] token state changed + ########################### #Unselectable signedAudit Events |