Translated message

A translation of this page exists in English.

Auditd が/var/run/audispd_events を作成しない

Solution In Progress - Updated 2025-08-29T08:05:15+00:00 -

Issue

複数のホストで audid が実行されており、audispd がインストールされています。監査ルールは auditctl -l で確認できますが、/var/run/audispd_events ファイルは作成されません。

Auditd を再起動すると、次のメッセージが表示されます。

Apr 11 09:02:32 hostname auditd[848]: Wrong number of arguments for line 6 in /etc/audit/plugins.d//af_unix.conf
Apr 11 09:02:32 hostname auditd[848]: Skipping af_unix.conf plugin due to errors
Apr 11 09:02:32 hostname auditd[848]: No plugins found, not dispatching events
Apr 11 09:02:32 hostname auditd[848]: Init complete, auditd 3.1.5 listening for events (startup state enable)

Environment

Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 9

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Select Your Language

Translated message

Auditd が/var/run/audispd_events を作成しない

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

About

Red Hat legal and privacy links

Red Hat legal and privacy links

Translated message

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links