Identity, Policy *AND* Audit for RHEL7

Latest response

Whilst I know that IPA is called Identity Management in it's current guise in RHEL6, and that "The audit component of the project will remain deferred until further notice." is currently stated on the FreeIPA website, the audit component is something that is really lacking a cohesive approach from Red Hat.

 

Whether or not RHEL7 delivers journald or rsyslog, the 'A' part of IPA is something that could really do with a boost.

 

It's also something that would provide an essential component of using RHEL in a large environment.  The simpler it is to get all* log files back to some central server(s), the more likely it is to be done right.  The usual arguments of "that would take too much bandwidth" are moot here - it's the admin's choice whether or not a) to implement remote logging and b) which log files get sent.

 

This is one aspect of large scale implementations (or small scale secure implementations) that really needs to be done right.

 

D

 

* - dependant on the configuration chosen by the admins

Responses