Home >

LunaSH Command Reference Guide > LunaSH Commands > audit

audit

As the audit user, invoking the audit role on the HSM, manage the audit logging functions of the HSM.  

Note:  HSM audit commands control HSM audit logging. They are visible only to someone logging in to the Network HSM appliance as the audit user; audit commands are hidden from the appliance admin, operator, monitor, or any other non-auditor user.

The audit user also has access to a limited set of commands grouped under the following command menus:

hsm

Provides access to the following:

the hsm show command. See hsm show.

all hsm ped commands, except for the hsm ped vector commands. The audit appliance user is allowed to connect and disconnect remote PED connections, adjust timeout, and view connection information, but is not allowed to create (init) or erase a remote PED vector. See hsm ped.

my Provides a set of commands equivalent to those provided to other non-admin users. See my
network Provides only the show and ping commands. See network.

Syntax

audit

changepwd
config
init
log
login
logout
remotehost
secret
show
sync

Parameter Shortcut Description
changepwd -ch Changes the audit user password or PED key. See audit changepwd.
config -co

Set the audit parameters. See audit config .

init -i Initialize the audit role. See audit init.
log -log Access commands that allow you to manage audit log files. See audit log.
login -logi Login as the audit user. See audit login
logout -logo Logout the audit user. See audit logout
remotehost -r Configure audit logging remote hosts. See audit remotehost.
secret -se Export or import the audit logging secret. See audit secret.
show -sh Display the current audit logging configuration. See audit show
sync -sy Synchronizes the HSM time to the host time. See audit sync