000026035 - How to determine who vetted a certificate

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000026035
Applies ToKeon Certificate Authority 6.5.1
Keon Registration Authority 6.5.1
Microsoft Windows 2000 Server SP3
IssueHow to determine who vetted a certificate
ResolutionOn the KCA/KRA under System Configuration --> Secure Logging on the KRA, configure "log on success" & "log on failure" to be selected. Restart KCA/KRA if configuration changed.

Next, in the audit log, the audit log will show the MD5 of the Admin/vettor's certificate who approved the request or made changes to the KCA. See Chapter 10 of the KCA admin guide for more information on the audit logs.

Additional Information:

The KCA/KRA Logging Server records log entries for PKI and system events, signs them with a certified private key, and distributes logs in XML or comma-separated value format. The Logging Server accepts secure connections from logging clients and processes requests to add log events. Only an Auditor has access to the audit logs created by the Logging Server.

Log data is stored in local files. Log files are named based on the date they are created, following the format xslog_yyyymmdd.xml. If multiple audit logs are created on the same day, they are numbered consecutively. For example: xslog_20020405.xml , xslog_20020405_1.xml , xslog_20020405_2.xml , xslog_20020405_3.xml
Legacy Article IDa22695