Hot fix F61007 addresses the issue(s) in SAS Scalable Performance Data Server 4.53 on Linux for x64 as documented
in the Issue(s) Addressed section of the hot fix download page:
http://ftp.sas.com/techsup/download/hotfix/HF2/F61.html#F61007
The hot fix downloaded, F61007pt.zip, contains the updated files required to address
the documented issues.
Do NOT extract the contents of F61007pt.zip. The hot fix installation process will extract
the contents as needed.
After downloading F61007pt.zip, follow the instructions for applying hot fixes in the SAS Deployment Wizard and SAS Deployment Manager 9.3: User’s Guide.
The content of this hot fix is listed in the hot fix manifest.
Password Database Audit Logging onto the System Log
This feature will log changes to the SPD Server psmgr database to a system log that is secure from all users except the system administer.
The feature is enabled by the system administrator (root access) on the host where SPD Server is installed as follows:
SYSLOG=YES
An example of enabling user.notice messages on a 64-bit Solaris system is to add an entry to the /etc/syslog.conf file to indicate where the user.notice messages will be sent. The following entry in /etc/syslog.conf will send the user.notice messages to file /var/adm/messages:
user.notice /var/adm/messagesEnabling system logging on Linux systems vary based on the type and version of the Linux operating system.
You should consult the syslog.conf(5) and syslog(3) man page for detailed information on how to enable user.notice system messages and direct their output to a file.
You can validate user.notice messages are configured correctly by issuing the following command: logger -p user.notice
"This is a test of the user.notice syslog entry". You can then check the configured log file for the test message to
determine if the syslog setup is correct.
When psmgr database auditing is enabled, changes to the psmgr database by the psmgr utility and by the SPDS SMC Password Manager panel will be logged to the system log as user.notice messages.
Messages are logged when the SPD Server password database is updated by
opuser is the userid of:
opuser is SPDSSMC if the change was made by the SPDS SMC
Messages sent to the syslog are:
"SPDS AUDIT opuser ADD userid " "SPDS AUDIT opuser GROUPDEF newgroupname" "SPDS AUDIT opuser AUTHORIZE username" "SPDS AUDIT opuser DELETE username" "SPDS AUDIT opuser GROUPDEL groupname" "SPDS AUDIT opuser RESET username" "SPDS AUDIT opuser CHGPASS username" "SPDS AUDIT opuser GROUPMEM group1 ... group5" "SPDS AUDIT opuser CHGAUTH userid" "SPDS AUDIT opuser CHGEXPIRE userid" "SPDS AUDIT opuser CHGTIMEOUT userid" "SPDS AUDIT opuser CHGFAIL userid" "SPDS AUDIT opuser CHGPERFCLASS userid" "SPDS AUDIT opuser EXPORT"
This completes the installation of hot fix F61007 on Linux for x64.
Copyright 2015 SAS Institute Inc. All Rights Reserved.