Configuring Audit Log Settings
You can choose to retain audit logs depending on size, retention period, or both.
- The audit log retention policy (by size or retention period) is enforced every 10 minutes starting from system startup.
- Audit log retention by size is approximate:
- If an audit is added to the log while the system is in this enforcement period, the size of the audit log may increase temporarily.
- If an audit is in process when the enforced size is reached, then that audit is retained in the log and the rest are deleted.
If you want to use an external syslog server, see Configuring Syslog Server Settings.
- Log into the Cryptographic Security Platform Vault Management webGUI using an account with Security Admin privileges.
- In the top menu bar, click Settings.
-
In the General Settings section, click Audit Log and specify the options you want to use. The Cryptographic Security Platform Vault Management webGUI automatically saves your changes as you make them.
Option
Description
Log Retention
The Cryptographic Security Platform Vault webGUI displays the number of days for which it will keep old audit log messages. The default is 90 days. Click this value to set a new retention time. The minimum retention time allowed is 30 days.
If you check the Retain All checkbox, then Cryptographic Security Platform Vault will never delete old messages from the audit log.
Maximum Log Size
The default is Unlimited, which means Cryptographic Security Platform Vault never deletes old messages from the audit log based on the size of log.
To change this value, click Unlimited then enter an integer and select
If you have changed the size and want to restore the default Unlimited setting, specify 0 (zero) in this field.
