|Applies To||Keon Certificate Authority 6.5.1|
Keon Registration Authority 6.5.1
Microsoft Windows 2000 Server SP3
|Issue||How to determine who vetted a certificate|
|Resolution||On the KCA/KRA under System Configuration --> Secure Logging on the KRA, configure "log on success" & "log on failure" to be selected. Restart KCA/KRA if configuration changed.|
Next, in the audit log, the audit log will show the MD5 of the Admin/vettor's certificate who approved the request or made changes to the KCA. See Chapter 10 of the KCA admin guide for more information on the audit logs.
The KCA/KRA Logging Server records log entries for PKI and system events, signs them with a certified private key, and distributes logs in XML or comma-separated value format. The Logging Server accepts secure connections from logging clients and processes requests to add log events. Only an Auditor has access to the audit logs created by the Logging Server.
Log data is stored in local files. Log files are named based on the date they are created, following the format xslog_yyyymmdd.xml. If multiple audit logs are created on the same day, they are numbered consecutively. For example: xslog_20020405.xml , xslog_20020405_1.xml , xslog_20020405_2.xml , xslog_20020405_3.xml
|Legacy Article ID||a22695|