SECURITY_DATA_RECOVERY_REQUEST Audit Event - dogtagpki/pki GitHub Wiki

Overview

The SECURITY_DATA_RECOVERY_REQUEST audit event is generated when a recovery request is created.

Properties:

  • SubjectID: UID of agent that is generating request

  • Outcome: success/failure

  • RecoveryID: ID of recovery request

  • DataID: ID of the key that needs to be recovered

  • PubKey: public key associated with the key to be recovered.

If the recovery request is made through the UI, then PubKey will be populated. If through the REST API, then the DataID will be populated.

Examples

Using Web UI

Use Web UI to recover a key:

[AuditEvent=SECURITY_DATA_RECOVERY_REQUEST][SubjectID=kraadmin][Outcome=Success]
[RecoveryID=316][DataID=null][PubKey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCyElB
1jEDpzcP7SI6JmbS/BGGwAVftpxv4pD5AByWt31Buzzj17ujzD+JXAx06On+DN4n1HTwH/vfVpSRd/0N
UaQld6m1hvljRNMhOcP6PfsVPQf0SweLWbZM2aRt3GJss5oynKeS4kSsNp3kyLSE7u008vOE8fQrfBdG
l/zgLIwIDAQAB] security data recovery request made

Using PKI CLI

Use PKI CLI to recover a key:

$ pki -n kraadmin kra-key-recovery --keyID 0x9c

The server will generate the following events:

[AuditEvent=SECURITY_DATA_RECOVERY_REQUEST][SubjectID=kraadmin][Outcome=Success]
[RecoveryID=318][DataID=156][PubKey=null] security data recovery request made
⚠️ **GitHub.com Fallback** ⚠️