Audit changes

The Citrix Hypervisor audit log, which is enabled by default, records any operation with side-effects performed by a known user. The operation is recorded whether it is successful or unsuccessful. This audit log includes:

  • The user’s name who performed the action. If the user’s name is not available, Citrix Hypervisor logs the user ID instead.
  • The server name that the action targeted.
  • The status of the action - if it was successful or unsuccessful and if it was authorized. if the operation failed then the error code is logged.

The audit logging feature is enabled by default. The audit log can be backed up by using the Citrix Hypervisor syslog command to duplicate the audit log to a safe box. The syslog command is available from the xe CLI and documented in Command line interface.

If you are concerned with auditing, we recommend you implement Role Based Access Control. However, the audit log does not require that users are assigned RBAC roles nor does it require Active Directory integration.

Citrix Hypervisor logs actions on the pool level, and creates a log for each pool on the pool master.

To display the audit log, you have two choices. You can:

  • Generate the Pool Audit Trail report, provided you have Workload Balancing enabled.
  • Display the audit log by opening it in any text editor. The log is stored on the pool master.

Audit changes