Introduction to Audit logs


Audit logs play a very important role when it comes to diagnose and track the issue related to user sessions or Accesspoint related issues. 


Audit logs are in 2 modules:


1) User session


2) Access points





1) User session:


      The user session contains logs for the user's session like, when a user got connected when the internet service was               started, and when the user session was breached or disconnected. It also has logs related to any scheduled task run.



The data columns the User session table contains are as below:



-  SSID name                      -   The SSID with which the users are connected

-  Username                        -   Username or mac address of the user.

- Client MAC address          -   User's device MAC address

-  Client IPv4 address          -    IPv4 address of the user's device

-  Authentication type           -    it can be either WPA2-PSK or captive portal login types like Username password or Voucher.

-  Name                                -    Name of the Event log.

-  Event Type                       -    Type of the Event

-  Description                        -    This will advise an event in brief.

-  Severity                             -    Displays the severity level of the occurred event.

-  Created date                     -    Date of event creation/occurrence.





2) Access points:


      This module of Audit logs contains event logs related to Access points.

      Every event for Access Points will be displayed here, for instance, when AP get connected or AP gets disconnected,         AP is added to the cluster or removed from the cluster.

   


The data columns the Access points table contains are as below:



-  AP Name                            -     Name of the Access point, it can be system generated or user defined.

-  MAC Address                     -     MAC address of the Access point.

-  Serial Number                    -     Serial number of the Access point.

-  Status                                 -     Status of the Access point ( Online / Offline).

-  Node Mode                         -     Network mode of the Access point (  Client / Bridge / Gateway).

-  Hardware Name                 -     The model name of the Access point (Vega /Canopus/Cygnus, etc.).

-  Hardware image version    -      Current AP os version.

-  Target Version name          -      Initial basic OS version of the AP.

-  Name                                 -      Name of the event log.

-  Event Type                         -      Type of the event log.

-  Description                         -      Brief description of the event log.

-  Severity                              -      Severity level of the event for the Access points.

-  Created date                      -      Date of event creation/occurrence.








   

Thank you,


Ray support.