Set Up File Transfer Auditing

You can use audit logging to maintain a record of file transfer activity. Audit logging is configured using the FileXpress Secure Shell Proxy. It is not enabled by default. The audit file is a comma-delimited text file with the following data for each transfer:

User ID
Client IP address
Action (upload or download)
Server filename
Start time
End time
Server file modification time
Server file size
Bytes transferred
Result (success or failure)
Reason
Server file hash (optional, the SHA-1 hash of the file contents)

To enable file transfer auditing

  1. From the FileXpress Gateway Proxy, start the FileXpress Secure Shell Proxy console. It is installed in the Windows Start menu (or Apps list) under Attachmate FileXpress Gateway > FileXpress Secure Shell Proxy.
  2. Go to Configuration > Logging > Audit Logging.
  3. Select Enable file transfer auditing.
  4. Save your settings (File > Save Settings).

When audit logging is enabled, FileXpress Secure Shell Proxy creates a new log each day in the specified Audit log directory. Audit logs use this name format: RSSHD-Audit-YYYYMMDD.log, where YYYYMMDD indicates the date.

To view the audit log quickly from the FileXpress Secure Shell Proxy console, use the audit log file toolbar button:
Event viewer button