Network Deployment (Distributed operating systems), v8.0 > Applications > Service integration > Service integration security > Messaging security audit events
A messaging client receiving a message from a subscription
The messaging security audit events SECURITY_AUTHN, A SECURITY_AUTHZ, and SECURITY_AUTHN_TERMINATE are produced when a messaging client receives a message from a subscription.
Audit events are produced when a messaging client receives a message from a subscription as follows:
- The messaging client connects to a messaging bus:
- A SECURITY_AUTHN event is produced when the identity of the messaging client connecting to the bus is authenticated.
- A SECURITY_AUTHZ event is produced when the identity of the messaging client is checked for access authority to the bus.
- A SECURITY_AUTHZ event is produced when the identity of the messaging client is checked for authority to receive the message. This check is only performed once per connection session, and the result is cached.
If changes are made to the access rights for the topic, or a new subscription is created that matches an existing topic (either exactly or as a result of a 'wildcard' match), the cache entry for the topic becomes invalid. Another check is made for authority to receive the message, and another SECURITY_AUTHZ event is produced.
- One or more messages are received by the client from a subscription. No audit events are produced.
- When the connection between a messaging client and a messaging bus is terminated, a SECURITY_AUTHN_TERMINATE event is produced.
To record these audit events, you create security event type filters for them.
Create security auditing event filters
Auditing the service integration security infrastructure
Concept topic