Job Management Partner 1/Base User's Guide

Appendix K.3 Operation log output format

An operation log record is output at an operated JP1 user level, or at a JP1 resource group level. For example, if the JP1 authority levels for two JP1 resource groups (jp1group1 and jp1group2) registered by a JP1 user are changed, a record for each JP1 resource group (jp1group1 and jp1group2) is output.

If the setting for the JP1 resource group or JP1 authority level is changed in the user permission level file (JP1_UserLevel), and then the jbsaclreload or jbs_spmd_reload command is executed, the contents of the user permission level file (JP1_UserLevel) are compared with the operating permission information on the authentication server. Only the changed definition information is output to the operation log.

The output format, destination, and the items for the operation log output are described below.

Organization of this subsection

(1) Output format

(2) Output log

(3) Output items

(4) Output example

(1) Output format

CALFHM x.x,output-item-1=value-1,output-item-2=value-2,...,output-item-n=value-n

(2) Output log

In Windows:

installation-folder\log\BASE\base_log[n^#].log

In UNIX:

/var/opt/jp1base/log/BASE/base_log[n^#].log

#: n is a decimal number from 1 to 16.

(3) Output items

There are two types of output items:

Common output items
These items are common to all JP1 products that output operation log information.

Fixed output items
These are optionally output by JP1 products that output operation log information.

(a) Common output items

The following table shows the possible common output values and their meanings.

Table K-2 Common output items for the operation log

No. Output item Value Contents

Item name Output attribute name

1 Common specification identifier -- CALFHM Log format identifier

2 Common specification revision number -- x.x Revision number for log format management

3 Sequence number seqnum Sequence number Operation log record sequence number. (Each process is numbered.)

4 Message ID msgid KAJP6xxx-x Product message ID

5 Date and time date yyyy-mm-ddThh:mm:ss.sssTZD^#1 Data and time the operation log record is output, and the time zone

6 Source program name progid JP1Base Name of the program where the event occurred

7 Source component name compid User_management Name of the component where the event occurred

8 Source process ID pid Authentication server's process ID ID of the process where the event occurred

9 Source location (host name) ocp:host Authentication server's host name^#4 Name of the host where the event occurred

10 Event type ctgry

StartStop

ConfigurationAccess

Category name used to classify events recorded in the operation log

11 Event result result

Success

Failure

Event result

12 Subject identification subj:euid

OS-user-name^#4

Unknown^#²

Not Support^#³

Name of the OS user that caused the event

Legend:

--: There is no attribute name to be output.

#1: T separates the date from the time. ZD is a time zone specifier. One of the following is output:

+hh:mm: Indicates a positive time difference of hh:mm from the UTC time.

-hh:mm: Indicates a negative time difference of hh:mm from the UTC time.

Z: Indicates the same time as the UTC time.

#2: Unknown is output if a message (from KAJP6016-I to KAJP6020-I) is output when the jbs_spmd_reload command is executed. The name of the OS user executing the command is included in the subject type information for the message (from KAJP6022-I to KAJP6023-W) that immediately follows.

#3: Not Support is output if a user authentication command is executed for JP1/Base version 08-00 or earlier. To determine the OS user that executed the command, JP1/Base must be version 09-00 or later.

#4: None is output if no value is available.

(b) Fixed output items

The following table shows the possible fixed output values and their meanings.

Table K-3 Fixed output items for the operation log

No. Output item Value Contents

Item name Output attribute name

1 Object information obj

JP1user

Permission

Process

Password

Operation target

2 Operation information op

Add

Apply

Update

Delete

Start

Stop

Operation type

3 Object location information: authentication-server-name objloc:authsv authentication-server-name^#1 Name of the authentication server where the operated resource exists

4 Object location information: JP1-user-name objloc:user JP1-user-name^#1 Name of the JP1 user that has the operated resource

5 Pre-change information: JP1-resource group-name before:rsrcgrp JP1-resource-group-name^#1 Deleted information output as pre-change information

6 Post-change information: JP1-resource-group-name after:rsrcgrp JP1-resource-group-name^#1 Post-change information output

7 Post-change information: JP1-authority-level-name after:prmssn JP1-authority-level-name^#1 Post-change information output

8 Authority information auth

Windows
Administrator

UNIX
SuperUser

Authority of the operating OS user

9 Requesting host from:ipv4 IP-address-of-the-command-executing-host^#1#2 IP address of the command executing host

10 Optional description msg For details on messages^#2,see K.6 Operation log messages. Message describing the event

#1: Output of these values depend on the operation log message. See Table K-4.

#2: None is output if no value is available.

Fixed output items output to the operation log depend on the operation log message. The fixed output items for message IDs are shown in the following table.

Table K-4 Message IDs and fixed output items

Message ID Object location information: authentication server name Object location information: JP1 user name Pre-change information: JP1 resource group name Post-change information: JP1 resource group name Post-change information: JP1 authority level name Requesting host

KAJP6000-I Y Y N N N Y

KAJP6001-W Y Y N N N Y

KAJP6002-I Y Y N N N Y

KAJP6003-W Y Y N N N Y

KAJP6004-I Y Y N N N Y

KAJP6005-W Y Y N N N Y

KAJP6006-I Y Y N Y Y Y

KAJP6007-W Y N N N N Y

KAJP6008-I Y Y N Y Y Y

KAJP6010-I Y Y Y N N Y

KAJP6011-W Y Y N N N Y

KAJP6012-I Y N N N N N

KAJP6013-E Y N N N N N

KAJP6014-I Y N N N N N

KAJP6015-E Y N N N N N

KAJP6016-I Y Y N Y Y Y

KAJP6017-W Y N N N N Y

KAJP6018-I Y Y N Y Y Y

KAJP6020-I Y Y Y N N Y

KAJP6022-I N N N N N N

KAJP6023-W N N N N N N

Legend:

Y: Output

N: Not output

No.	Output item	Value	Contents
Item name	Output attribute name
1	Common specification identifier	--	CALFHM	Log format identifier
2	Common specification revision number	--	x.x	Revision number for log format management
3	Sequence number	seqnum	Sequence number	Operation log record sequence number. (Each process is numbered.)
4	Message ID	msgid	KAJP6xxx-x	Product message ID
5	Date and time	date	yyyy-mm-ddThh:mm:ss.sssTZD^#1	Data and time the operation log record is output, and the time zone
6	Source program name	progid	JP1Base	Name of the program where the event occurred
7	Source component name	compid	User_management	Name of the component where the event occurred
8	Source process ID	pid	Authentication server's process ID	ID of the process where the event occurred
9	Source location (host name)	ocp:host	Authentication server's host name^#4	Name of the host where the event occurred
10	Event type	ctgry	StartStop ConfigurationAccess	Category name used to classify events recorded in the operation log
11	Event result	result	Success Failure	Event result
12	Subject identification	subj:euid	OS-user-name^#4 Unknown^#² Not Support^#³	Name of the OS user that caused the event

No.	Output item	Value	Contents
Item name	Output attribute name
1	Object information	obj	JP1user Permission Process Password	Operation target
2	Operation information	op	Add Apply Update Delete Start Stop	Operation type
3	Object location information: authentication-server-name	objloc:authsv	authentication-server-name^#1	Name of the authentication server where the operated resource exists
4	Object location information: JP1-user-name	objloc:user	JP1-user-name^#1	Name of the JP1 user that has the operated resource
5	Pre-change information: JP1-resource group-name	before:rsrcgrp	JP1-resource-group-name^#1	Deleted information output as pre-change information
6	Post-change information: JP1-resource-group-name	after:rsrcgrp	JP1-resource-group-name^#1	Post-change information output
7	Post-change information: JP1-authority-level-name	after:prmssn	JP1-authority-level-name^#1	Post-change information output
8	Authority information	auth	Windows Administrator UNIX SuperUser	Authority of the operating OS user
9	Requesting host	from:ipv4	IP-address-of-the-command-executing-host^#1#2	IP address of the command executing host
10	Optional description	msg	For details on messages^#2,see K.6 Operation log messages.	Message describing the event

Message ID	Object location information: authentication server name	Object location information: JP1 user name	Pre-change information: JP1 resource group name	Post-change information: JP1 resource group name	Post-change information: JP1 authority level name	Requesting host
KAJP6000-I	Y	Y	N	N	N	Y
KAJP6001-W	Y	Y	N	N	N	Y
KAJP6002-I	Y	Y	N	N	N	Y
KAJP6003-W	Y	Y	N	N	N	Y
KAJP6004-I	Y	Y	N	N	N	Y
KAJP6005-W	Y	Y	N	N	N	Y
KAJP6006-I	Y	Y	N	Y	Y	Y
KAJP6007-W	Y	N	N	N	N	Y
KAJP6008-I	Y	Y	N	Y	Y	Y
KAJP6010-I	Y	Y	Y	N	N	Y
KAJP6011-W	Y	Y	N	N	N	Y
KAJP6012-I	Y	N	N	N	N	N
KAJP6013-E	Y	N	N	N	N	N
KAJP6014-I	Y	N	N	N	N	N
KAJP6015-E	Y	N	N	N	N	N
KAJP6016-I	Y	Y	N	Y	Y	Y
KAJP6017-W	Y	N	N	N	N	Y
KAJP6018-I	Y	Y	N	Y	Y	Y
KAJP6020-I	Y	Y	Y	N	N	Y
KAJP6022-I	N	N	N	N	N	N
KAJP6023-W	N	N	N	N	N	N

(4) Output example

An example of operation log output is shown below.

This output example shows information output to the operation log on the authentication server "server1" when the JP1 user jp1user1 is added with the jbsadduser command.
CALFHM 1.0,seqnum=59,msgid=KAJP6000-I,date=2006-09-10T11:05:23.480+09:00,
progid=JP1Base,compid=User_management, pid=4028,
ocp:host=hostA,ctgry=ConfigurationAccess,result=Success,
subj:euid=Administrator,obj=JP1user,op=Add,objloc:authsv=server1,
objloc:user=jp1user1,auth=Administrator,from:ipv4=206.aa.bb.ccc,
msg=The JP1 user was added successfully

[Contents][Back][Next]

[Trademarks]