Auditing Services
The Reflection for Secure IT server provides the following auditing services:
- Login history
- Currently logged in users
- Failed logins
Auditing is always enabled. Output locations are platform-dependent. For details refer to the following table.
Platform |
Login history |
Current login |
Failed login |
HPUX (11.11) PARISC |
/var/adm/wtmp |
/etc/utmp |
/var/adm/btmp |
HPUX (11.23) Itanium |
/var/adm/wtmps |
/etc/utmpx |
/var/adm/btmps |
AIX 5.2, 5.3 |
/var/adm/wtmp |
/etc/utmp |
/etc/security/ /etc/security/ |
Solaris 8, 9, 10 |
/var/adm/wtmpx |
/var/adm/utmpx |
/var/adm/ |
RHEL 4, 5 |
/var/log/lastlog /var/log/wtmp |
/var/run/utmp |
/var/log/btmp |
SLES 9, 10 |
/var/log/wtmp |
/var/run/utmp |
/var/log/btmp |
Notes:
- Some platforms write to more than one file.
- On some Linux systems, btmp is not present. The server writes to this database if it is present.
 |