Audit Changes Made By Users (Change Audit)
Cisco EPN Manager supports managing change audit data in the following ways:
Enable Change Audit Notifications and Configure Syslog Receivers
If desired, you can configure Cisco EPN Manager to send a change audit notification when changes are made to the system. These changes include device inventory and configuration changes, configuration template and monitoring template operations, and user operations such as logins and logouts and user account changes.
You can configureCisco EPN Manager to:
-
Forward changes as change audit notifications to a Java Message Server (JMS).
-
Send these messages to specific syslog receivers.
If you configure syslog receivers but do not receive syslogs, you may need to change the anti-virus or firewall settings on the destination syslog receiver to permit reception of syslog messages.
Procedure
Step 1 |
Select , then choose . |
||
Step 2 |
Select the Enable Change Audit Notification check box to enable notifications. |
||
Step 3 |
If you want to send the messages to specific syslog receivers: |
||
Step 4 |
Click Save.
|
View Change Audit Details
Procedure
Step 1 |
Log in to Cisco EPN Manager as an administrator. |
||
Step 2 |
Choose .The Change Audit Dashboard displays:
The Change Audit report and Change Audit dashboard display the details irrespective of the virtual domain you are logged in. The Change Audit Dashboard screen also displays the Device Name apart from other details such as IP Address, Audit Description, Audit Name, and Client IP Address. Click the i icon next to the IP Address field to view the Device 360 details.
|
Cisco EPN Manager logs all the details in Change Audit Dashboard at /opt/CSCOlumos/logs/audit.log
, see Audit Log for more information.