# # Novell Audit Platform Agent configuration # # LogHost - Specifies the IP address or DNS name of the Secure # Logging Server (SLS). # # Multiple Secure Logging Servers can be configured # by entering a comma separated list of addresses # with no spaces. The first address listed is the # primary SLS. Additional addresses are attempted # sequentially if/when the preceding address cannot # be contacted. # # Example: LogHost=10.1.1.1,10.1.1.2,10.1.1.3 # # Default: 127.0.0.1 # # LogCacheDir - Specifies where lcache will store its cache files. # # Default (Windows): C:\Program Files\Novell\Nsure Audit\cache # Default (NetWare): SYS:\ETC\logcache # # LogEnginePort - Specifies the port on which the SLS will listen for # incoming connections. # # Default: 289 # # LogCachePort - Specifies the port on which lcache will listen for # connections. # # Default: 288 # # LogCacheUnload - Indicates whether lcache will allow itself to be # unloaded. Set to 'no' to prevent unloading. # # Default: yes # # LogCacheSecure - Indicates whether lcache should encrypt its cache. # Set to 'yes' to enable cache encryption. # # Default: no # # LogReconnectInterval - Specify, in seconds, how often lcache and the # platform agent should attempt to reconnect to the # SLS if the connection is interrupted. # # Default: 600 # # LogDebug - Specifies when and how to manage debug events. # Set to 'never' to prevent debug events from being # logged. Set to 'always' to force the logging # of debug events. Omit or set to 'server' to use # the default setting provided by the Secure Log # Server. # # Default: never # # LogSigned - Indicates whether events should be signed when # logged. Set to 'never' to prevent event signing. # Set to 'always' to force the logging of events # with a signature. Omit or set to 'server' to use # the default setting provided by the Secure Log # Server. # # Default: never # # LogMaxBigData - Specify, in bytes, the size of an event's data # field to be larger than the default value of 3072 # bytes. This should be set to the maximum number # of bytes that this client will allow. Data fields # larger than this size will be truncated. The data # may not be transmitted at all if the application # does not allow truncated events to be logged. # # Default: 3072 # # LogMaxCacheSize - Specifiy, in bytes, the maximum size of a cache # file. If not specified, the log cache file will # continue to grow while disk space is available. # # Default: (unspecified, no limit) # # LogCacheLimitAction - This specifies the action that will be enacted # when the cache file has reached its maximum size # limit (see above). Set to 'stop logging' if event # collection should be halted. Set to 'drop cache' # if you want to reset (delete) the cache file. # This setting is ignored if LogMaxCacheSize is not # specified. # # Default: (unspecified, no action) # # ForceServerVersionNumber - If logging to a log server from Nsure Audit # version 1.0.x set this parameter to instruct the # Platform Agent to use a particular Secure Log # Server protocol version. # # Valid values are: 1.0.0, 1.0.1, 1.0.2, 1.0.3, # 1.0.3.P1, 1.0.3.P2, and etc. If using patches # from Nsure Audit 1.0.3, please indicate the patch # number being used: P1, P2, P3, etc. # # Starting with Nsure Audit 1.0.3 Patch 2, the # Secure Log Server properly reports the protocol in # use and the Novell Audit 2.0.x Platform Agent will # automatically use the protocol reported by the # Secure Log Server. # # NOTE: Some options may not be available in all versions of Novell Audit. # LogHost=127.0.0.1