Solaris Template
Tested Solaris Versions
This software has been tested on the following Solaris versions:
- Solaris 10
- Solaris 11
Solaris Controls
The following table shows the Solaris security audit details on which the template can be used to control the information that is received and actioned in your security schema.
|
Action |
Subaction |
BSMCategory |
Description |
|
Create User |
User Creation |
'BSM.ACCOUNT.CREATE.USER' |
Records whenever a user account is created |
|
Delete User |
User Deletion |
'BSM.ACCOUNT.DELETE.USER' |
Records whenever a user account is deleted |
|
User Modified |
User Modification |
'BSM.ACCOUNT.MODIFY.USER' |
Records whenever a user account is changed |
|
User Account Password Changed |
Password Modification |
'BSM.ACCOUNT.MODIFY.USER.PASSWD' AND (ADITEVENT_ACCOUNT=NULL or EMPTY) |
Records whenever a user password is changed |
|
User Account Password Reset |
Password Reset |
'BSM.ACCOUNT.MODIFY.USER' AND IT IS NOT THE ABOVE |
Records whenever a user password is reset |
|
Group Role Profile Created |
Role Creation |
'BSM.ACCOUNT.CREATE.ROLE' |
Records whenever a role is created |
|
Group Role Profile Deleted |
Role Deletion |
'BSM.ACCOUNT.DELETE.ROLE' |
Records whenever a role is deleted |
|
Group Role Profile Modified |
Role Modification |
'BSM.ACCOUNT.MODIFY.ROLE' |
Records whenever a role is changed |
|
Group Profile Created |
Profile Creation |
'BSM.ACCOUNT.CREATE.GROUP' |
Records whenever a Group profile is created |
|
Group Profile Deleted |
Profile Deletion |
'BSM.ACCOUNT.DELETE.GROUP' |
Records whenever a Group profile is deleted |
|
Group Profile Modified |
Profile Modification |
'BSM.ACCOUNT.MODIFY.GROUP' |
Records whenever a Group profile is changed |
|
Logon Failure |
Logon Failure |
LIKE 'BSM.LOGON.*' AND AuditEvent_ErrorValue='failure' |
Records whenever a logon attempt fails |
|
Logon |
Successful Login |
LIKE 'BSM.LOGON.*' AND AuditEvent_ErrorValue='success' |
Records whenever a logon attempt succeeds |
|
Logout |
Logoff |
LIKE 'BSM.LOGOUT.*' |
Records whenever a user logoffs the system |
|
SU-Substitute User Profile to Root |
SU - Switch User to Root |
LIKE 'BSM.LOGON.SU' |
Records whenever a user profile swap is actioned |