K.3 Operation log output format
An operation log record is output at an operated JP1 user level, or at a JP1 resource group level. For example, if the JP1 authority levels for two JP1 resource groups (jp1group1 and jp1group2) registered by a JP1 user are changed, a record for each JP1 resource group (jp1group1 and jp1group2) is output.
If the setting for the JP1 resource group or JP1 authority level is changed in the user permission level file (JP1_UserLevel), and then the jbsaclreload or jbs_spmd_reload command is executed, the contents of the user permission level file (JP1_UserLevel) are compared with the operating permission information on the authentication server. Only the changed definition information is output to the operation log.
The output format, destination, and the items for the operation log output are described below.
- Organization of this subsection
(1) Output format
CALFHM x.x,output-item-1=value-1,output-item-2=value-2,...,output-item-n=value-n
(2) Output log
- In Windows:
-
installation-folder\log\BASE\base_log[n#].log
- In UNIX:
-
/var/opt/jp1base/log/BASE/base_log[n#].log
- #:
-
n is a decimal number from 1 to 16.
(3) Output items
There are two types of output items:
-
Common output items
These items are common to all JP1 products that output operation log information.
-
Fixed output items
These are optionally output by JP1 products that output operation log information.
(a) Common output items
|
No. |
Output item |
Value |
Contents |
|
|---|---|---|---|---|
|
Item name |
Output attribute name |
|||
|
1 |
Common specification identifier |
-- |
CALFHM |
Log format identifier |
|
2 |
Common specification revision number |
-- |
x.x |
Revision number for log format management |
|
3 |
Sequence number |
seqnum |
Sequence number |
Operation log record sequence number. (Each process is numbered.) |
|
4 |
Message ID |
msgid |
KAJP6xxx-x |
Product message ID |
|
5 |
Date and time |
date |
yyyy-mm-ddThh:mm:ss.sssTZD#1 |
Data and time the operation log record is output, and the time zone |
|
6 |
Source program name |
progid |
JP1Base |
Name of the program where the event occurred |
|
7 |
Source component name |
compid |
User_management |
Name of the component where the event occurred |
|
8 |
Source process ID |
pid |
Authentication server's process ID |
ID of the process where the event occurred |
|
9 |
Source location (host name) |
ocp:host |
Authentication server's host name#4 |
Name of the host where the event occurred |
|
10 |
Event type |
ctgry |
|
Category name used to classify events recorded in the operation log |
|
11 |
Event result |
result |
|
Event result |
|
12 |
Subject identification |
subj:euid |
|
Name of the OS user that caused the event |
- Legend:
-
--: There is no attribute name to be output.
#1: T separates the date from the time. ZD is a time zone specifier. One of the following is output:
-
+hh:mm: Indicates a positive time difference of hh:mm from the UTC time.
-
-hh:mm: Indicates a negative time difference of hh:mm from the UTC time.
-
Z: Indicates the same time as the UTC time.
#2: Unknown is output if a message (from KAJP6016-I to KAJP6020-I) is output when the jbs_spmd_reload command is executed. The name of the OS user executing the command is included in the subject type information for the message (from KAJP6022-I to KAJP6023-W) that immediately follows.
#3: Not Support is output if a user authentication command is executed for JP1/Base version 08-00 or earlier. To determine the OS user that executed the command, JP1/Base must be version 09-00 or later.
#4: None is output if no value is available.
(b) Fixed output items
|
No. |
Output item |
Value |
Contents |
|
|---|---|---|---|---|
|
Item name |
Output attribute name |
|||
|
1 |
Object information |
obj |
|
Operation target |
|
2 |
Operation information |
op |
|
Operation type |
|
3 |
Object location information: authentication-server-name |
objloc:authsv |
authentication-server-name#1 |
Name of the authentication server where the operated resource exists |
|
4 |
Object location information: JP1-user-name |
objloc:user |
JP1-user-name#1 |
Name of the JP1 user that has the operated resource |
|
5 |
Pre-change information: JP1-resource group-name |
before:rsrcgrp |
JP1-resource-group-name#1 |
Deleted information output as pre-change information |
|
6 |
Post-change information: JP1-resource-group-name |
after:rsrcgrp |
JP1-resource-group-name#1 |
Post-change information output |
|
7 |
Post-change information: JP1-authority-level-name |
after:prmssn |
JP1-authority-level-name#1 |
Post-change information output |
|
8 |
Authority information |
auth |
|
Authority of the operating OS user |
|
9 |
Requesting host |
from:ipv4 or from:ipv6 |
IP-address-of-the-command-executing-host#1#2 |
IP address of the command executing host |
|
10 |
Optional description |
msg |
For details on messages#2, see K.6 Operation log messages. |
Message describing the event |
#1: Output of these values depend on the operation log message. See Table K-4.
#2: None is output if no value is available.
Fixed output items output to the operation log depend on the operation log message. The fixed output items for message IDs are shown in the following table.
|
Message ID |
Object location information: authentication server name |
Object location information: JP1 user name |
Pre-change information: JP1 resource group name |
Post-change information: JP1 resource group name |
Post-change information: JP1 authority level name |
Requesting host |
|---|---|---|---|---|---|---|
|
KAJP6000-I |
Y |
Y |
N |
N |
N |
Y |
|
KAJP6001-W |
Y |
Y |
N |
N |
N |
Y |
|
KAJP6002-I |
Y |
Y |
N |
N |
N |
Y |
|
KAJP6003-W |
Y |
Y |
N |
N |
N |
Y |
|
KAJP6004-I |
Y |
Y |
N |
N |
N |
Y |
|
KAJP6005-W |
Y |
Y |
N |
N |
N |
Y |
|
KAJP6006-I |
Y |
Y |
N |
Y |
Y |
Y |
|
KAJP6007-W |
Y |
N |
N |
N |
N |
Y |
|
KAJP6008-I |
Y |
Y |
N |
Y |
Y |
Y |
|
KAJP6010-I |
Y |
Y |
Y |
N |
N |
Y |
|
KAJP6011-W |
Y |
Y |
N |
N |
N |
Y |
|
KAJP6012-I |
Y |
N |
N |
N |
N |
N |
|
KAJP6013-E |
Y |
N |
N |
N |
N |
N |
|
KAJP6014-I |
Y |
N |
N |
N |
N |
N |
|
KAJP6015-E |
Y |
N |
N |
N |
N |
N |
|
KAJP6016-I |
Y |
Y |
N |
Y |
Y |
Y |
|
KAJP6017-W |
Y |
N |
N |
N |
N |
Y |
|
KAJP6018-I |
Y |
Y |
N |
Y |
Y |
Y |
|
KAJP6020-I |
Y |
Y |
Y |
N |
N |
Y |
|
KAJP6022-I |
N |
N |
N |
N |
N |
N |
|
KAJP6023-W |
N |
N |
N |
N |
N |
N |
|
KAJP6024-I |
Y |
N |
N |
N |
N |
N |
|
KAJP6025-I |
Y |
N |
N |
N |
N |
N |
- Legend:
-
Y: Output
N: Not output
(4) Output example
This output example shows information output to the operation log on the authentication server "server1" when the JP1 user jp1user1 is added with the jbsadduser command.
CALFHM 1.0,seqnum=59,msgid=KAJP6000-I,date=2006-09-10T11:05:23.480+09:00, progid=JP1Base,compid=User_management, pid=4028, ocp:host=hostA,ctgry=ConfigurationAccess,result=Success, subj:euid=Administrator,obj=JP1user,op=Add,objloc:authsv=server1, objloc:user=jp1user1,auth=Administrator,from:ipv4=206.aa.bb.ccc, msg=The JP1 user was added successfully