Audit changes

The XenServer audit log, which is enabled by default, records any operation with side-effects performed by a known user. The operation is recorded whether it is successful or unsuccessful. This audit log includes:

  • The user’s name who performed the action. If the user’s name is not available, XenServer logs the user ID instead.
  • The server name that the action targeted.
  • The status of the action - if it was successful or unsuccessful and if it was authorized. if the operation failed then the error code is logged.

The audit logging feature is enabled by default. The audit log can be backed up by using the XenServer syslog command to duplicate the audit log to a safe box. The syslog command is available from the xe CLI and documented in Command line interface.

If you are concerned with auditing, we recommend you implement Role Based Access Control. However, the audit log does not require that users are assigned RBAC roles nor does it require Active Directory integration.

XenServer logs actions on the pool level, and creates a log for each pool on the pool coordinator.

To display the audit log, you have two choices. You can:

  • Generate the Pool Audit Trail report, provided you have Workload Balancing enabled.
  • Display the audit log by opening it in any text editor. The log is stored on the pool coordinator.
Audit changes

In this article