Auditing is the ability to monitor selected user actions according to a defined security policy. In Jethro, audit messages are logged in an audit log file per server.
Audit log file name:
The Audit message are divided into categories (Can be turned on/off in jethrolog.properties):
Audit message properties
AUTHENTICATION | AUTHORIZATION
LOGIN | RECONNECT | <sql-command-type>
INSTANCE | SCHEMA | TABLE | VIEW
<object-identifier> | other
SELECT | INSERT | ALL
True | False
Events triggering audit messages
Upon user first connect attempt, logs the logging attempt: operation LOGIN, the available details, and marks allowed true/false.
Upon reconnect attempt, logs the reconnect attempt: operation RECONNECT, the available details, and marks allowed true/false.
- Upon check of permission to an object issue, log message with all the available details.