Audit report contents

The following details characterize an audited action and are included in audit report contents:

TIMESTAMP

The time that the action was performed. The time is given in Coordinated Universal Time (UTC) and indicated in micro- or nanoseconds. (For example, 12/06/10 10:32:48.)

USER

The identity of the user who performed the action. The identity includes the user name, the domain, and the domain type of the authenticated user.

The name of the host or the IP address from where was the action was initiated.

DESCRIPTION

The details of the action that was performed. The details include any new values given to a modified object, the new values of all attributes for a newly created object, and the identification of any deleted objects.

CATEGORY

The shortened format of the category of user action performed. Displays only with the -fmt DETAIL|PARSABLE options.

Examples include the following:

  • AUDITSVC START, AUDITSVC STOP

  • POLICY CREATE, POLICY MODIFY, POLICY DELETE

ACTION

The shortened format of the action that was performed. Displays only with the -fmt DETAIL|PARSABLE options.

Examples include the following:

  • START, STOP

  • CREATE, MODIFY, DELETE

Figure: Summary audit report example shows the default contents of an audit report that was run on server1.

Figure: Summary audit report example

Summary audit report example

If an exit status appears in the output, look up the code in the NetBackup Administration Console (Troubleshooter), the online Help, or the Troubleshooting Guide.