You're currently browsing the Ignition 8.0 docs. Click here to view the latest docs.


Ignition's built-in auditing system automatically records certain actions that occur in the system, such as a tag writes or User Source authentication, into a SQL database table. Utilizing the system involves creating an Audit Profile, followed by enabling auditing in a project. Once both prerequisites have been met, the Gateway will automatically create a database table named AUDIT_EVENTS, and use the table to start tracking user actions.


The following feature is new in Ignition version 8.0.7
Click here to check out the other new features

Remote Audit Log configuration option was introduced in 8.0.7 allowing audit events to be automatically sent to a remote gateway's audit log. The remote gateway you plan to connect to must have a Audit Profile created. To learn more about sending audit events to a remote gateway, refer to section Creating a Remote Gateway Audit Profile on this page.

The following feature is new in Ignition version 8.0.10
Click here to check out the other new features

Ignition version 8.0.10 introduced an Internal Audit Profile option allowing an Ignition Gateway to store audit records without an external SQL database. The only way to interact with the Internal Audit Profile is via the Status page of the Gateway webpage. There are only two settings for the Internal Audit Profile type: Name and Description (which are identical to those same properties on the Database audit profile type).

Auditing Actions

for a list of actions that are recorded by an audit profile, see the Auditing Actions Reference page. 

On this page ...



Creating an Audit Profile for a Database

  1. Go to the Config  section of the Gateway.

  2. Choose Security > Auditing from the menu on the left.  The Audit Profiles page is displayed. 

  3. Click the Create a new Audit Profile link.

    The following feature is new in Ignition version 8.0.7
    Click here to check out the other new features

  4. You have the option of storing audit logs into an external database or sending them to a remote gateway. In this example, select Database. (Configuring audit events to be sent to a remote gateway's audit log is addressed in Creating a Remote Gateway Audit Profile  section on this page).



  5. Enter the Name of the audit log and Description (optional).
  6. Under the Database Settings, select the Database where the table will be stored, select the Auto Create check box, and enter the desired Table Name.

  7. Click Create New Audit Profile.




Once some changes have been made to a Tag or a Database table, Ignition will begin recording.
 


Creating a Remote Gateway Audit Profile

Just like configuring audit events to be logged into an external database, it is done from the Gateway webpage, Config > Security > Auditing.

  1. To have your audit events automatically sent to a remote gateway's audit profile, select Remote, and click Next.

  2. A list of known gateways will be displayed. If you don't see a gateway that you expected to see, check your Gateway Network settings to verify that the connections are valid. You also have the option to specify a gateway manually. This example selects a valid gateway. Click Next.



  3. If an Audit profile exists, the fields will auto-populate. The name of the gateway will appear in the Name field prefaced with the audit profile name,(i.e., Ignition_Test_Auditing), as shown in the following example. Click Create New Audit Profile.



  4. You will receive a successful message stating your new Audit Profile was created.


Remote Gateway Audit Profile Properties Table

Main

NameThe default name, is the name of the Remote Gateway and Audit Profile.
DescriptionDescription of the audit profile. Optional.
EnabledBy default. the journal profile is enabled.

Remote Settings

Target SystemThe remote system to send audit events to over the gateway network.
Target ProfileThe audit profile on the remote system to log events into.


Enabling Auditing in a Project

  1. Go to the Designer, open the project that you want to enable auditing on, and go to Project > Properties.
  2. Go to the General section, select the Enable Auditing check box, and select your Audit Profile from the drop-down menu. The audit profile is used to record audit actions for your project. If the new audit profile does not show up, click Refresh
  3. Click OK.
  4. Save your Project. 


Viewing Information in an Audit Log

There are a few ways to view audit information: using a Table component, interface on the Gateway, or the Database Query Browser. Here is one example of viewing an Audit Log using the Database Query Browser.    

  1. Go to Tools > Database Query Browser.
  2. Under the Schema area, double click on a table, and it will expand the query in the Database Query Browser area. 
  3. Click Execute, and all the audit log data will be displayed in the Resultset1 area.  



Related Topics ...
In This Section ...


  • No labels