NXLog search
Let's talk Start free
Let's talk Start free

NXLog Legacy Documentation

audit log

What is an audit log?

Description

An audit log or an audit trail is a type of log that contains a non-repudiable record of system activities. Although they vary significantly from system to system, they typically record information on who did what and when. Audit logs support regulatory compliance, accountability, and security. Audit logs note every change within a system, providing a complete trail of your system’s operations. Audit logs are a valuable resource for system administrators and auditors who want to examine suspicious activity on a network or diagnose and troubleshoot issues.

In the world of NXLog

At NXLog, audit logs are considered among the most critical logs. They are an essential part of IT security, giving insight into what is happening in your environment and helping you meet compliance requirements and risk management.

Known as

audit trail, audit log

Related

Linux Audit system
AIX auditing
Understanding and auditing WMI
Windows USB auditing
Windows Security audit

A   B   C   D   E   F   G   H   I   J   K   L   M   N   O   P   R   S   T   U   V   W   X   Z

A

agent

agent-based log collection

agentless log collection

audit log

B

bandwidth

C

CEF (Common Event Format)

CSV (Comma-separated Values)

D

data source

DNS logging

E

endpoint security

EPS (Events Per Second)

ETW (Event Tracing for Windows)

event correlation

F

failover

G

GELF (Graylog Extended Log Format)

H

High Availability (HA)

I

ICMP (Internet Control Message Protocol)

IDS (Intrusion Detection System)

J

JSON (JavaScript Object Notation)

K

kernel log

KVP (Key-Value Pair)

L

LEEF (Log Event Extended Format)

log centralization

log normalization

log parsing

M

MSSP (Managed Security Service Provider)

multi-line logs

N

NetFlow

O

open source

P

pattern

PCI-DSS (Payment Card Industry Data Security Standard)

protocol

R

Raijin database

Remote Access Server Role

S

SCCM (System Center Configuration Manager)

SEM (Security Event Management)

SIM (Security Information Management)

SIEM (Security Information and Event Management)

SNMP (Simple Network Management Protocol)

SOC (Security Operations Center)

structured logging

syslog

T

TCP (Transmission Control Protocol)

TLS (Transport Layer Security)/SSL (Secure Sockets Layer)

U

UEBA (User and Entity Behavior Analytics)

UDP (User Datagram Protocol)

V

vendor-agnostic

W

W3C Extended Log File Format

WEC (Windows Event Collector)

WEF (Windows Event Forwarding)

Windows Event ID

WMI (Windows Management Instrumentation)

X

XPath

Z

ZeroMQ