219
edits
Changes
m
→Access to System Audit Log
====Access to System Audit Log====
To meet the audit requirements of FIPS 140-2 at Security Level 2, on Red Hat Enterprise Linux 4 and Trusted Solaris, the NSS cryptographic module also uses can be configured to use the audit mechanism provided by the operating system to audit events, so the . The audit data are also will be stored in the system audit log. Only the root user can read or modify the system audit log. Auditing is turned off by default. To turn on the auditing capability, you need to set the environment variable NSS_ENABLE_AUDIT to 1. You also need to configure the operating systems audit mechanism.
On Red Hat Enterprise Linux 4, the system audit log is in the <code>/var/log/audit</code> directory. This directory and the log files in it have the following permission bits (the following commands were run as the root user; only the root user can run the second command):
'''Configure the Solaris Auditing:'''
To configure the System Audit Logs mechanism on Solaris the following administration tasks need to be completed. Create the audit class 'fp', then create the audit event 'AUE_FIPS_AUDIT ' and add the class 'fp' to the audit_control file.
Edit /etc/security/audit_class
