4-4 Oracle Fusion Middleware WebLogic Scripting Tool Command Reference

4.2.3.1 Description

Online command that configures the audit policy settings. You can set the filter preset, add or remove users, and add or remove custom events. The component mbean name is required for non-Java EE components like Oracle Internet Directory and Oracle Virtual Directory.

4.2.3.2 Syntax

setAuditPolicy[mbeanName],[filterPreset],[addSpecialUsers], [removeSpecialUsers],[addCustomEvents],[removeCustomEvents]

4.2.3.3 Examples

The following interactive command sets audit policy to None level, and adds users user2 and user3 while removing user1 from the policy: wls:mydomainserverConfig setAuditPolicy filterPreset= None,addSpecialUsers=user2,user3,removeSpecialUsers=user1 wls:mydomainserverConfig getAuditPolicy; Already in Domain Runtime Tree FilterPreset:None Special Users:user2,user3 Max Log File Size:104857600 Max Log Dir Size:0 The following interactive command adds login events while removing logout events from the policy: wls:mydomainserverConfig setAuditPolicyfilterPreset= Custom,addCustomEvents=UserLogin,removeCustomEvents=UserLogout The following interactive command sets audit policy to a Low level: wls:IDMDomaindomainRuntime setAuditPolicyfilterPreset=Low; Already in Domain Runtime Tree Audit Policy Information updated successfully wls:IDMDomaindomainRuntime getAuditPolicy; Already in Domain Runtime Tree FilterPreset:Low Max Log File Size:104857600 Max Log Dir Size:0 Note: You can obtain a non-Java EE components MBean name using the getNonJavaEEAuditMBeanName command. Argument Definition mbeanName Specifies the name of the component audit MBean for non-Java EE components. filterPreset Specifies the filter preset to be changed. addSpecialUsers Specifies the special users to be added. removeSpecialUsers Specifies the special users to be removed. addCustomEvents Specifies the custom events to be added. removeCustomEvents Specifies the custom events to be removed. Infrastructure Security Custom WLST Commands 4-5 The following command sets a custom filter to audit the CheckAuthorization event: wls:IDMDomaindomainRuntime setAuditPolicyfilterPreset=Custom, addCustomEvents=JPS:CheckAuthorization; Already in Domain Runtime Tree Audit Policy Information updated successfully wls:IDMDomaindomainRuntime getAuditPolicy; Already in Domain Runtime Tree FilterPreset:Custom Special Users:user1 Max Log File Size:104857600 Max Log Dir Size:0 Custom Events:JPS:CheckAuthorization

4.2.4 getAuditRepository