Audit events for the connection

The connection to IBM Cloud Identity Connect has two audit events.

The audit events are generated on both success and failure cases.

Audit Event Scenario
IBMCI_CONNECT_EVENT Generated when the administrator connects the IBM Security Verify Access deployment to Cloud Identity Connect, and also when the connection is updated.
IBMCI_DISCONNECT_EVENT Generated when the administrator disconnects IBM Security Verify Access from Cloud Identity Connect.

We can use the typical IBM Security Verify Access methods to configure auditing. From the LMI, select Monitor > Logs > Audit Configuration and enable syslog. Enable audit logs and verbose audit events.

To view the log files, select Monitor > Logs > Application Log Files. Under Tree View, expand Federation and Auditing to access the file audit.log.

IBMCI_CONNECT_EVENT

IBMCI_DISCONNECT_EVENT


Parent topic: Connect Verify Access to IBM Security Verify