Configuration Guide › Auditing › How to Configure Auditing › How to Configure CA IdentityMinder to Audit User Login and Logout Events

How to Configure CA IdentityMinder to Audit User Login and Logout Events

You can configure CA IdentityMinder to audit the login and logout events in the audit settings file. By default, the audit login and logout event is enabled when auditing is enabled in a particular environment. You can update the auditing configuration to enable or disable the login and logout events in a CA IdentityMinder environment.

The audit status for login and logout events is recorded in two states:

COMPLETE

Indicates successful user login and logout.

INVALID

Indicates invalid entry of username or password. Invalid also indicates invalid for any anonymous login attempt.

To configure user login and logout events:

1. In the Management Console, go to Advanced Settings.
2. Export the current audit settings to an audit settings XML file.
3. Configure the audit settings in the XML files.

   The following code is an example of how to enable user login and logout events:

   <AuditEvent name="Login" enabled="true" auditlevel="BOTHCHANGED">
   

   	<AuditProfile objecttype="LOGIN" auditlevel="BOTHCHANGED"/>
   

          <EventState name="COMPLETE" severity="NONE"/>
   

          <EventState name="INVALID" severity="CRITICAL"/>
   

   </AuditEvent>
   

   <AuditEvent name="Logout" enabled="true" auditlevel="BOTHCHANGED">
   

   	<AuditProfile objecttype="LOGOUT" auditlevel="BOTHCHANGED"/>
   

          <EventState name="COMPLETE" severity="NONE"/>
   

          <EventState name="INVALID" severity="CRITICAL"/>
   

   </AuditEvent>
   

   Enter true to log the event and false to disable the log event respectively.

4. Import the modified audit settings XML file.

   User login and logout events are configured.