Enabling Solaris Audit log: Solaris 9

view story

http://www.unix.com – Dear All, I have one of my Servers, running Solaris 9. I wanna enable the Audit log enabling, the way I did in Solaris 10 Servers. After running, the bsmconv script, giving the reboots, modifying all the audit files in /etc/security, the audit is enabled, but the audit file which shall be updating in human readable format, its missing. The /var/adm/messages show the following error. syslogd: line 47: unknown facility name "audit" Now, this must be because of the following entry in syslog.conf which is not supported by Solaris 9. audit.notice /var/adm/auditlog Pl (HowTos)