Configuring FTP audit logging

Server and Cluster Administration Guide for Hitachi NAS Platform

Version
15.1.x
Audience
anonymous
Part Number
MK-92HNAS010-35
  1. Navigate to Home > File Services > FTP Audit Logs.
  2. Click details to display the FTP Audit Log Details page for the EVS for which you want to configure FTP audit logging.


    Field/Item Description
    EVS Lists the currently selected EVS and file system, to which the audit configuration will apply.
    Audit Logging Indicates if FTP audit logging is enabled or disabled for the EVS.
    File System Displays the name of the file system that will contain the FTP audit log files. Click change to select a different file system.
    Logging Directory Displays the directory path in the file system in which the FTP audit log files are stored. The path options allow you to select an existing directory, or to create the directory if it does not already exist.
    Note: The browse... button only exists if the path being created is the path in a file system, not a namespace.
    Note: Automatically created directories will be owned by the root user and group (UID:0 / GID:0) and will be accessible to all users; for example: the permissions are set to rwxrwxrwx. It is recommended that such directories are created using CIFS or NFS, or that such directories are given the desired permissions explicitly after being created using this option.
    Max. Records per Log File Specifies the maximum number of records per log file. Once the maximum number of records per file is reached, a new log file is started.

    Each log file is a tab-delimited text file containing one line per FTP event. Besides logging the date and time at which an event occurs, the system logs the user name and IP address of the client and a description of the executed command.

    Max. Number of Log Files Specifies the maximum number of log files to be kept. Once the maximum number of log files is reached, when the current log file becomes full, the oldest log file is deleted. The newest log file is called ftp.log, and the older files are called ftpn.log (the larger the value of n, the older the file).
    OK Save the configuration.
    cancel Exits without saving the configuration.
  3. In the File System field, choose a file system in which to keep the log files. Click change to see a list of file systems in the EVS.
    For optimum performance, keep the log files on a different system drive than the files that users will access over FTP
  4. Specify the logging directory.
    The logging directory specifies the location in which the FTP audit logs are kept. In the Logging Directory field, specify the directory in which to keep the log files. Click browse to choose an existing directory, or specify a path to be created. To create the path automatically when it does not already exist, select the check box Create path if it does not exist.
  5. In the Max. Number of Records per Log File field, specify the maximum number of records to store in each log file.
    For optimum performance, produce a small number of large files instead of a large number of small files.
  6. In the Max. Number of Log Files field, specify the maximum number of log files to keep.
    Once it has reached this limit, the server deletes the oldest log file each time it creates a new one.
  7. Click OK to save the FTP audit logging configuration.