HP XP20000/XP24000 HP StorageWorks XP24000/XP20000 Audit Log Reference Guide ( - Page 24
Table 4 Items in the Syslog File
![]() |
View all HP XP20000/XP24000 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 24 highlights
Table 4 Items in the Syslog File (continued) No. Item Description 7 Message identification The serial number of the syslog header information. information 8 Message ID. Not displayed because it is not used. 9 Date, time#21 The date, time and the time difference between UTC (Coordinated Universal Time) in the format of YYYY-MM-DD-Thh:mm:ss.s hh:mm (YYYY: year, MM: month, DD: day, hh: hour, mm: minute, ss.s: second, hh: hours of the time difference and mm: minute of the time difference) Z is displayed instead of hh:mm when there is no time difference between UTC, such as 2005-12-26T:23:06:58.0Z. The displayed format for second ss.s represents one decimal place. 10 Detection entity 11 Detected location 12 Type of audit event The detection entity identification character (Storage). The host name (SVP). The category name of the event as described in the following example: • Authentication. iSCSI login or authentication of RMI (Remote Method Invocation) • ConfigurationAccess. Setting from Remote Web Console, SVP, or host. • AnomalyEvent. Reached the maximum of the audit log, etc. • Maintenance. SVP maintenance. 13 Result of the audit event The result of the audit event: • Success: Normal end. The operation has ended normally. • Failed: Error (xxxx-yyyy). The operation has ended abnormally. • Failed: Warning (xxxx-yyyy). The operation has partly ended abnormally or was canceled during the operation. Error codes are described as xxxx-yyyyy. SVP operations or commands from the host do not output error codes. 14 Subject identification The user name in the format of uid=user name. information • When the category name is AnomalyEvent, or the DKA Encryption License Key is created, is output. • is output for SVP operation. • is output for commands from host. 15 Hardware identification The ID (R600) to identify the model name of the product and the serial number divided information by a colon. 16 Generated location Not displayed because it is not used. information 17 Related information The location identification name set by the user in the Syslog window. 18 FQDN. Not displayed because it is not used. 19 Redundant identification information. Not displayed because it is not used. 20 Agent information Not displayed because it is not used. 24 Audit Log File Format
![](/manual_guide/products/hewlettpackard-xp20000xp24000-hp-storageworks-xp24000xp20000-audit-log-reference-guide-ae13196085-2011-8ac80ec/24.png)