Audit logs on Talend Administration Center - 8.0

Talend Administration Center User Guide

Version
8.0
Language
English
Product
Talend Big Data
Talend Big Data Platform
Talend Data Fabric
Talend Data Integration
Talend Data Management Platform
Talend Data Services Platform
Talend ESB
Talend MDM Platform
Talend Real-Time Big Data Platform
Module
Talend Administration Center
Content
Administration and Monitoring
Last publication date
2024-04-15

Audit logs are used to detect and analyze problems in how the application is used (attempted attacks, malicious activities by authorized users, and so on). The audit logs send selected security events to Talend LogServer by http appender.

From Talend Administration Center, a user with Auditor role can access an extended event logging module. This Logging page allows you to collect and classify time-stamped audit logs and make them easy to explore.
Note: Talend LogServer is deprecated from Talend 8.0 onwards.
To enable audit logs without Talend LogServer, go to <tomcat_path>WEB-INF\classes\audit.properties and set the following parameters:
  • in configuration.properties,
    auditlog.enable=true
  • in audit.properties,
    log.appender=file
    appender.file.path=/<filename>/audit.json

If you want to collect and display logs from Data Integration, ESB, or MDM in an external Elastic stack, refer to Configuring Talend logging modules with an external Elastic stack with X-Pack.