3.8.2. Enable Management Interface Audit Logging from the Management CLI

Management interface audit logging is disabled by default but preconfigured to output log records using a file handler named file to the file EAP_HOME/standalone/data/audit-log.log.
To enable audit logging from the Management CLI, enter the following command.
/core-service=management/access=audit/logger=audit-log:write-attribute(name=enabled,value=true)
To see all management interface audit logging configuration attributes and their values, enter the following command.
/core-service=management/access=audit:read-resource(recursive=true)
In addition to enabling or disabling management interface audit logging, the following logger configuration attributes are available.
log-boot
If set to true, management operations when booting the server are included in the audit log, false otherwise. Default: true.
log-read-only
If set to true, all operations will be audit logged. If set to false only operations that change the model will be logged. Default: false.