HP UX Auditing System Extensions manual

HP-UX 11i v2 and 11i v3 Security

Configuring and Managing the Auditing System

Technical white paper

Table of contents
Audience ............................................................................................................................................	2
Introduction.........................................................................................................................................	2
Auditing system overview .....................................................................................................................	3
Architecture.....................................................................................................................................	3
Audit tags .......................................................................................................................................	5
Audit trail........................................................................................................................................	5
Audit events ....................................................................................................................................	5
Audit tunable parameters (HP-UX 11i v3 only) .....................................................................................	7
Self-auditing programs......................................................................................................................	7
Auditing system extensions (HP-UX 11i v3 only) .................................................................................	13
HP-UX Auditing System Administration..................................................................................................	14
Installation.....................................................................................................................................	14
Configuration ................................................................................................................................	15
Management .................................................................................................................................	18
Writing a DPMS service module ..........................................................................................................	19
Service Provider Interfaces (SPIs) ......................................................................................................	19
DPMS service module implementation...............................................................................................	19
Best practices ....................................................................................................................................	19
Audit policy...................................................................................................................................	20
Audit generation and capture ..........................................................................................................	20
Audit retention and storage .............................................................................................................	21
Audit log analysis ..........................................................................................................................	21
Audit log configuration, security, and protection ................................................................................	22
Troubleshooting.................................................................................................................................	22
Glossary...........................................................................................................................................	24
For more information..........................................................................................................................	26
Send comments to HP.........................................................................................................................	26