1.0 Introduction
This article describes the system level log management settings that are configured by the Fortanix-Data-Security-Manager (DSM) system administrator.
The settings configured here are applicable to every object of the entire cluster.
The Fortanix DSM supports policies that can be set on the cluster that restrict what kind of operations can be permitted on accounts.
2.0 Log Management
Fortanix DSM automatically maintains an internal audit log of system operations. You can configure Fortanix DSM to send these audit log entries to an external logging system. This section illustrates how to log invalid API requests and send Fortanix DSM audit logs to the Syslog server.
Navigate to System Administration → Settings → LOG MANAGEMENT tab.
Figure 1: Log management page
2.1 Setting Retention Policy for Audit Logs
Perform the following steps to set the retention policy for the audit logs:
In the Log management page, click EDIT to set Retention period for Audit Logs.
Figure 2: Retention period for audit logs
Update the retention period as required. Select Keep log entries forever or specify a future date to retain the audit logs permanently.
Figure 3: Update the retention period
Click SAVE to save the configuration.
2.2 Log Invalid API Requests
Applications may sometimes send invalid API requests that result in 4XX errors, such as a 400 (Bad Request) error. To help debug these errors, Fortanix DSM logs them through the LOG MANAGEMENT feature.
To do this, enable the Logging invalid API requests toggle in the Log management page.
Figure 4: Logging invalid API requests
2.3 Sending Audit Logs to External Logging Systems
Fortanix DSM supports exporting audit logs to multiple external logging integrations, such as Splunk, Syslog, Google Cloud’s operations suite, and Azure Log Analytics. These integrations can be configured from the LOG MANAGEMENT menu item.
For detailed configuration steps for all supported integrations, refer to Logging.