WebAuthnAuditLogging

1 Authentication Auditing
- 1.1 Audit Format
- 1.2 Audit Logging Fields
2 Registration Auditing
- 2.1 Audit Format
- 2.2 Audit Logging Fields
3 Credential Management Auditing
- 3.1 Audit Format
- 3.2 Audit Logging Fields

Authentication Auditing

Authentication auditing can be enabled on the plugin by setting the idp.authn.webauthn.audit.enabled property to true— You’ll also need to enable the general authentication audit logging on the IdP using the property idp.authn.audit.enabled in /conf/authn.properties.

Audit Format

The default audit format is shown below (the fields are described in the table underneath).

%a|%T|%SP|%I|%s|%AF|%CV|%u|%WebAuthnUID|%WebAuthnUV|%WebAuthnFM|%tu|%AR|%UA

Audit Logging Fields

Field	Description

Field	Description

Registration Auditing

Registration auditing can be enabled on the plugin by setting the idp.authn.webauthn.registration.audit.enabled property to true.

Audit Format

The default audit format is shown below (the fields are described in the table underneath).

%a|%T|%u|%WebAuthnAdminAO|%WebAuthnAdminAction|%WebAuthnAdminCR|%WebAuthnAdminCA|%WebAuthnAdminAU|%UA

Audit Logging Fields

Field	Description

Field	Description

Credential Management Auditing

Credential management auditing can be enabled on the plugin by setting the idp.authn.webauthn.registration.audit.enabled property to true.

Audit Format

The default audit format is shown below (the fields are described in the table underneath).

%a|%T|%u|%WebAuthnAdminAO|%WebAuthnAdminAction|%WebAuthnAdminCR|%WebAuthnAdminAU|%UA

Audit Logging Fields

Field	Description

Field	Description