HP Network Protector SDN Application Administrator Guide

Audit Log data fields include the following:

• Timestamp: A time stamp (in UTC format) marking when the HP VAN SDN Controller created

the audit log entry.

• Administrator: A string representing the user that performed the operation that triggered the

log entry.

• Audit Action: A string description providing detail about the audit log entry.

• Description: A string describing any additional description of the audit action.

For example, the audit log displays custom blacklist modified activity:

Figure 27 Example of audit log showing custom blacklist modified activity

Manage the Audit Log Display

The paging information display indicates which page of the log is visible and how many pages

of Audit Log entries currently exist.

Setting Audit Log Policy

An audit log entry may not be modified or selectively deleted. Entries are removed only as a result

of the default age-out policy which is set to 40 days.

Archiving Audit Log Data Outside of the HP Network Protector

To archive the Audit Log data beyond the age-out policy, use the REST API to export the Audit Log

data out of the application prior to its age-out date. Exporting Audit Log data does not remove it

from persistent storage.

For more information about using REST API to export the Audit Log data, see the HP VAN SDN

Controller Administrator Guide in the SDN information library at

http://www.hp.com/go/sdn/infolib.

Support Logs

The Support Logs function automatically maintains an internal record of events of interest from the

operations of the application. This information is the type of data a support engineer would request

when troubleshooting application installation.

54 Monitoring