Managing Audits

From the Audits page, administrators can set up logging to an Audit server for the Makito X.

To configure an Audit server:

1. On the Administration page, click Security on the navigation bar and Audit on the sidebar. 
   The Audit page opens.
   

   

2. Check the Enabled checkbox to start logging to the audit server.
3. Type the audit server address and port in the Audit Server Address field. See Audit Settings for more details.
   The server address must be the Common Name or one of the Subject Alternative Names in the server's certificate for successful authentication if Transport is set to TLS and Trusted Server is set to CA-Signed.
4. Set the type of transport protocol that will be used to send the logs to the audit server. See details in Audit Settings.
5. If TLS is selected as Transport, choose the type of audit server to be accepted as a trusted server: either All (no server authentication), CA-signed, or Self-signed. If Trusted Servers is set to CA-signed, the root-CA certificate of the audit server certificate chain must be imported in the encoder (see Managing Certificates) for the TLS connection to succeed.
6. If Trusted Servers is set to Self-signed, copy the Fingerprint string from the Audit server's certificate and paste it in the Fingerprint field under Audit Settings to identify the certificate trusted for this TLS connection. The fingerprint should be that of the certificate that belongs to the audit server which was set in "Audit Server Address".
   

   

7. To apply your changes, click Apply.
   
   

Topics Discussed