AEM Forms JEE user audit logs enable | Community
Skip to main content
S
srujan1981
Level 3
March 13, 2025
Solved

AEM Forms JEE user audit logs enable

  • March 13, 2025
  • 2 replies
  • 874 views

Hi Friends,

 

Please help me out how to enable user audit logs in AEM Forms JEE (JBOSS) server. 

Though I had configured audit log entry in domain.xml file, audit.logs are not generated.

"

<audit-logging>
<file-audit-log name="local-audit" path="audit.log" relative-to="jboss.server.log.dir" format="JSON"/>
</audit-logging>

"

Thanks,

Srujan

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by Pranay_M

Hi @srujan1981,

I am not sure if you will be able to capture all the information as you mentioned in the previous note. However you can try to enable the debug log for the below class:

Class: “com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean”

Additionally, Please fine below the correct format for the config  that you can customize and  update in the doamin_<db>.xml which can help create custom logs for the above mentioned class.

Example:

<periodic-rotating-file-handler name="SAMLLOGS" autoflush="true">
                <formatter>
                        <pattern-formatter pattern="%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%E%n"/>
                </formatter>
                <file relative-to="jboss.server.log.dir" path="custom_saml.log"/>
                        <suffix value=".yyyy-MM-dd"/>
                        <append value="false"/>
            </periodic-rotating-file-handler>
                <logger category="com.adobe.idp.um">
                        <level name="DEBUG"/>
                                <handlers>
                                        <handler name="SAMLLOGS"/>
                                </handlers>
                </logger>

2 replies

R
Adobe Employee
rahulpandey27Adobe Employee
Adobe Employee
March 18, 2025

Hello @srujan1981 

 

Are you using domain.xml to start the Jboss in cluster mode?

Ideally it should be "domain_DBname.xml" file under configuration folder where all the DB details were added.

You need to edit that file in order to enable the audit logs for Jboss.

Please make the required changes and let us know if the audit logs are still not printing.

 

Thanks,

Rahul Pandey

    S
    srujan1981Author
    Level 3
    March 18, 2025

    Hi Rahul,

     

    I know the file location but what have to make the changes in .xml file to enable the audit logs. If you have sample one it would be very helpful to me.

     

    Thanks,

    Srujan

    R
    Adobe Employee
    rahulpandey27Adobe Employee
    Adobe Employee
    March 19, 2025

    Hello @srujan1981 

     

    Please refer the redhat doc at [0] for detailed instructions on how you can enable the audit logging in Jboss.

     

    Thanks,

    Rahul Pandey

     

    [0] https://developers.redhat.com/articles/2023/11/17/how-enable-jboss-eap-7-management-audit-log

      P
      Adobe Employee
      Pranay_MAdobe Employee
      Adobe Employee
      March 18, 2025

      Hi @srujan1981,

      You want to enable user audit logs in AEM Forms JEE. Can you please explain in detail what you mean by audit information. I am asking for this information because in JEE, by default only login failure events are captured in the logs.

      If you wish to capture other information like successful login, locked out, logout events capture, you can enable the debug level logs for different classes as well.

      Thanks
      Pranay

        S
        srujan1981Author
        Level 3
        March 18, 2025

        Hi Pranay,

        I am looking for tracking changes to user roles, permissions, user account management, un-authorization access logs in AEM JEE Forms server.

         

        Regards,

        Srujan

        P
        Adobe Employee
        Pranay_MAdobe EmployeeAccepted solution
        Adobe Employee
        March 19, 2025

        Hi @srujan1981,

        I am not sure if you will be able to capture all the information as you mentioned in the previous note. However you can try to enable the debug log for the below class:

        Class: “com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean”

        Additionally, Please fine below the correct format for the config  that you can customize and  update in the doamin_<db>.xml which can help create custom logs for the above mentioned class.

        Example:

        <periodic-rotating-file-handler name="SAMLLOGS" autoflush="true">
                        <formatter>
                                <pattern-formatter pattern="%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%E%n"/>
                        </formatter>
                        <file relative-to="jboss.server.log.dir" path="custom_saml.log"/>
                                <suffix value=".yyyy-MM-dd"/>
                                <append value="false"/>
                    </periodic-rotating-file-handler>
                        <logger category="com.adobe.idp.um">
                                <level name="DEBUG"/>
                                        <handlers>
                                                <handler name="SAMLLOGS"/>
                                        </handlers>
                        </logger>

          Terms & ConditionsAccessibility statement

          Loading footer...