Community
Search Options
Search Options
Log in
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Community
Storage
Topic groups
File and Object Storage
Global Storage Forum
IBM FlashSystem
IBM Fusion
IBM Storage Ceph
IBM Storage Defender
IBM Storage Protect for Cloud
Mainframe Storage
Storage Area Network (SAN)
Tape Library
Groups
AI
Automation
Data
Security
Sustainability
Cloud
IBM Z & LinuxONE
Power
Storage
IBM Champions
IBM Japan
All Groups
Champions
User groups
Storage user groups
All user groups
Events
IBM TechXchange Conference
Upcoming Storage events
IBM TechXchange Webinars
All IBM TechXchange Community Events
Participate
Welcome Corner
Blogging in the Community
Directory
Community Leaders
Resources
Gamification
Marketplace
Marketplace
IBM Storage
The online community where IBM Storage users meet, share, discuss, and learn.
Getting Started
Missed IBM TechXchange Dev Day: Virtual Agents? On-demand viewing is available
here
Skip main navigation (Press Enter).
Toggle navigation
Search Options
File and Object Storage
View Only
Group Home
Threads
166
Library
17
Blogs
553
Events
2
Members
2.9K
Share
Spectrum Scale File Audit Logging (FAL) and Watch Folder(WF) Document and Demo
By
WEI GONG
posted
Wed May 27, 2020 09:14 AM
0
Like
In IBM Spectrum Scale 5.0.5, fileset auditing and skip fileset auditing are available. You can choose up to 20 filesets to apply fileset auditing to, which means that file system activity is only audited if it occurs in the specified filesets. Or, you can choose up to 20 filesets to skip fileset auditing from, which means that all file system events are audited except in the specified filesets. For more information, see
Enabling or skipping filesets with file audit logging
section in Spectrum Scale document.
The watch API and sample program was for creating a single node watch using the API. Currently, provides more resilient and fully integrated cluster watch with the mmwatch command. It's recommended to use the improved mmwatch command to start clustered watches. For more information, see
mmwatch command
.
From version 5.0.5, IBM Spectrum Scale will no longer support creating the audit fileset on a filesystem that is not the one being audited. This means that the audit fileset must be belonged to the audited file system.
For more information about changes of File Audit Logging (FAL) and Watch Folder(WF), see
Summary of changes in Spectrum Scale 5.0.5.0
Below are some demos and documents about Spectrum Scale File Audit Logging(FAL) and Watch Folder(WF) features and integrated solution with some other productions or services.
[Demo] Bolstering_Cyber_Resilience_Demo
https://ibm.box.com/s/spk5nmovv4rufbper4f5m0wdk4utc0bs
[Redbook] Securing Data on Threat Detection Using IBM Spectrum Scale and IBM QRadar: An Enhanced Cyber Resiliency Solution
http://www.redbooks.ibm.com/abstracts/redp5560.html?Open
[Blog] IBM Spectrum Scale Security Posture with Kibana for Visualization
https://developer.ibm.com/storage/2020/05/22/ibm-spectrum-scale-security-posture-with-kibana-for-visualization/
[Blog] How to Visualize IBM Spectrum Scale Security Posture on Canvas
https://developer.ibm.com/storage/2020/05/22/how-to-visualize-ibm-spectrum-scale-security-posture-on-canvas/
[Blog] Analyze IBM Spectrum Scale File Access Audit with ELK Stack
https://developer.ibm.com/storage/2018/07/30/analyze-ibm-spectrum-scale-file-access-audit-elk-stack/
[Doc] Spectrum Scale File Audit Logging doc portal
https://www.ibm.com/support/knowledgecenter/STXKQY_5.0.5/com.ibm.spectrum.scale.v5r05.doc/bl1ins_quickrefadlg.htm
[Doc] Spectrum Scale Watch Folder API doc portal
https://www.ibm.com/support/knowledgecenter/STXKQY_5.0.5/com.ibm.spectrum.scale.v5r05.doc/bl1ins_quickrefwf.htm
[Doc] Spectrum Scale Clustered Watch Folder doc portal
https://www.ibm.com/support/knowledgecenter/STXKQY_5.0.5/com.ibm.spectrum.scale.v5r05.doc/bl1ins_quickrefclusterw.htm
0 comments
9 views
Permalink
Community
Storage
Topic groups
File and Object Storage
Global Storage Forum
IBM FlashSystem
IBM Fusion
IBM Storage Ceph
IBM Storage Defender
IBM Storage Protect for Cloud
Mainframe Storage
Storage Area Network (SAN)
Tape Library
Groups
AI
Automation
Data
Security
Sustainability
Cloud
IBM Z & LinuxONE
Power
Storage
IBM Champions
IBM Japan
All Groups
Champions
User groups
Storage user groups
All user groups
Events
IBM TechXchange Conference
Upcoming Storage events
IBM TechXchange Webinars
All IBM TechXchange Community Events
Participate
Welcome Corner
Blogging in the Community
Directory
Community Leaders
Resources
Gamification
Marketplace
Marketplace
Powered by Higher Logic