Policy Server Guides › Policy Server Administration Guide › Configuring Policy Server Data Storage Options › Audit Data Import Tool for ODBC

Audit Data Import Tool for ODBC

The Policy Server can store audit data in an ODBC database or output audit data to a text file. The smauditimport tool reads a SiteMinder audit data text file and imports the data into an ODBC database. The database has been configured as an audit store using 5.x or 6.x schema.

The smauditimport tool imports authentication, authorization, and admin data into the corresponding tables in the ODBC database. The tool logs the number of rows successfully imported into the ODBC database. For each row that cannot be imported into the ODBC database, the tool logs the row number.

The characters '[', ']', or '\' appearing in a field in the policy or user store require a preceding escaping character '\' (backslash). These characters appear because they have been used in fields like username, realm name, and so on.

Set the following registry key, to escape these characters automatically:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Netegrity\SiteMinder\CurrentVersion\LogConfig]
Value Type: DWORD VALUE
Value Name: EscapeAuditFields
Value Data: 1

When Value Data is set to 0, or if the key does not exist, there is no escaping, and the operation fails.

Note: In some SiteMinder documentation, the terms audit and logging are used interchangeably.

Log More Audit Data to a Text File

By default, the Policy Server logs less audit data to a text file than to an ODBC database. You can log more audit data to a text file than the default and bring the amount of data in line with an ODBC database. To do so, manually add the following registry key and set its value to one: "Enable Enhance Tracing". To disable "Enable Enhance Tracing", set its value to zero (the default).

To log more audit data to a text file

1. Manually add the registry key "Enable Enhance Tracing":

   Windows

   Add the following key:

   TYPE=DWORD
   \netegrity\SiteMinder\CurrentVersion\Reports
   \"Enable Enhance Tracing"
   

   Solaris

   Follow these steps:

   1. Open the file: .../siteminder/registry/sm.registry.
   2. Locate the line:

      HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Netegrity\SiteMinder
      \CurrentVersion\Reports=25089
      

   3. Below the line, add the following:

      "Enable Enhance Tracing"=0x1;	REG_DWORD
      

   4. Save and close the file.
2. Set "Enable Enhance Tracing" to one.

Note: The value of "Enable Enhance Tracing" does not affect logging of Entitlement Management Services (EMS) events.

Audit Data Import Prerequisites for ODBC

Before you run the tool smauditimport, verify that the following prerequisites have been satisfied:

• The Policy Server is installed on a Windows, Solaris, or Linux operating environment.

  Note: For Solaris and Linux platforms, run nete_ps_env.ksh before running the smauditimport tool.

• The ODBC database is configured as an audit (logging) store with 5.x or 6.x schema.

  Note: For more information about how to configure an ODBC database as an audit (logging) store, see the Policy Server Installation Guide.

• The registry key "Enable Enhance Tracing" is set to one.