SECURITY_DATA_ARCHIVAL_REQUEST Audit Event - dogtagpki/pki GitHub Wiki

Overview

Properties:

  • SubjectID: UID of agent that initiated the request.

  • Outcome: Success or Failure.

  • ArchivalRequestID: The identifier used to track the audit logs. In the case of the CA-KRA connector, this is the certificate request ID in the CA. For requests coming from the REST API, this is not currently set.

  • RequestId: ID for the archival request created in the KRA (could be ephemeral).

  • ClientKeyID: The client key ID that was passed in by the client to identify the secret.

Examples

Use the PKI CLI to archive a passphrase:

$ pki -n caadmin kra-key-archive --clientKeyID "my_pass4" --passphrase "goodbye cruel world!"

The server will generate the following events:

[AuditEvent=SECURITY_DATA_ARCHIVAL_REQUEST][SubjectID=kraadmin][Outcome=Success]
[ArchivalRequestID=null][RequestId=1495][ClientKeyID=my_pass4] security data arc
hival request made
⚠️ **GitHub.com Fallback** ⚠️