How do I disable audit logging in OpenIDM 3.x?
The purpose of this article is to provide assistance on disabling audit logging in OpenIDM 3.x. By default, audit logs are written to both the repository and the CSV files; you can disable either or both as required.
Archived
This article has been archived and is no longer maintained by ForgeRock.
Disabling audit logging
You can disable audit logging by making changes to the audit.json file (located in the /path/to/openidm/conf directory).
The relevant section in this file is:
"logTo" : [ { "logType" : "csv", "location" : "audit", "recordDelimiter" : ";" }, { "logType" : "repository", "useForQueries" : true } ],Note
The "useForQueries" : true line has been added in OpenIDM 3.0.0 so is missing in earlier versions.
You can disable audit logging by removing the relevant logType section. For example, if you no longer want to log to the repository, you would remove the repository section from this file so it would now look like this:
"logTo" : [ { "logType" : "csv", "location" : "audit", "recordDelimiter" : ";" }, ],Note
Alternatively, you could consider limiting the amount of information that is logged by adding a filter triggers list to audit.json as described in OpenIDM Integrator's Guide › Using Audit Logs › Audit Configuration. As of OpenIDM 3.1.0, you can also filtering audit data to reduce the amount of data logged or purge obsolete audit data to prevent audit logs growing excessively.
See Also
OpenIDM Integrator's Guide › Using Audit Logs
OpenIDM Integrator's Guide › Using Audit Logs › Audit Configuration
OpenIDM Integrator's Guide › Using Audit Logs › Filtering Data for Audits
OpenIDM Integrator's Guide › Using Audit Logs › Purging Obsolete Audit Information
Related Training
N/A
Related Issue Tracker IDs
N/A