- Notes, cautions, and warnings
- Introduction to this guide
- isi antivirus commands
- isi antivirus cava
- isi antivirus cava filters
- isi antivirus cava filters list
- isi antivirus cava filters modify
- isi antivirus cava filters view
- isi antivirus cava jobs
- isi antivirus cava jobs create
- isi antivirus cava jobs delete
- isi antivirus cava jobs list
- isi antivirus cava jobs modify
- isi antivirus cava jobs start
- isi antivirus cava jobs view
- isi antivirus cava servers
- isi antivirus cava servers create
- isi antivirus cava servers delete
- isi antivirus cava servers list
- isi antivirus cava servers modify
- isi antivirus cava servers view
- isi antivirus cava settings
- isi antivirus cava settings modify
- isi antivirus cava settings view
- isi antivirus cava status
- isi antivirus icap policies create
- isi antivirus icap policies delete
- isi antivirus icap policies list
- isi antivirus icap policies modify
- isi antivirus icap policies start
- isi antivirus icap policies view
- isi antivirus icap settings modify
- isi antivirus icap settings view
- isi antivirus icap servers create
- isi antivirus icap servers delete
- isi antivirus icap servers list
- isi antivirus icap servers view
- isi antivirus icap servers modify
- isi antivirus quarantine
- isi antivirus release
- isi antivirus reports delete
- isi antivirus reports scans list
- isi antivirus reports scans view
- isi antivirus reports threats list
- isi antivirus reports threats view
- isi antivirus scan
- isi audit commands
- isi audit certificates syslog delete
- isi audit certificates syslog import
- isi audit certificates syslog list
- isi audit certificates syslog modify
- isi audit certificates syslog view
- isi audit progress global view
- isi audit progress view
- isi audit settings global modify
- isi audit settings global view
- isi audit settings modify
- isi audit settings view
- isi audit topics list
- isi audit topics modify
- isi audit topics view
- isi auth commands
- isi auth access
- isi auth ads create
- isi auth ads delete
- isi auth ads list
- isi auth ads modify
- isi auth ads spn check
- isi auth ads spn create
- isi auth ads spn delete
- isi auth ads spn fix
- isi auth ads spn list
- isi auth ads trusts controllers list
- isi auth ads trusts list
- isi auth ads view
- isi auth duo modify
- isi auth error
- isi auth file create
- isi auth file delete
- isi auth file list
- isi auth file modify
- isi auth file view
- isi auth groups create
- isi auth groups delete
- isi auth groups flush
- isi auth groups list
- isi auth groups members list
- isi auth groups modify
- isi auth groups view
- isi auth id
- isi auth krb5 create
- isi auth krb5 delete
- isi auth krb5 domain create
- isi auth krb5 domain delete
- isi auth krb5 domain list
- isi auth krb5 domain modify
- isi auth krb5 domain view
- isi auth krb5 list
- isi auth krb5 realm create
- isi auth krb5 realm delete
- isi auth krb5 realm list
- isi auth krb5 realm modify
- isi auth krb5 realm view
- isi auth krb5 spn check
- isi auth krb5 spn create
- isi auth krb5 spn delete
- isi auth krb5 spn fix
- isi auth krb5 spn import
- isi auth krb5 spn list
- isi auth krb5 view
- isi auth ldap create
- isi auth ldap delete
- isi auth ldap list
- isi auth ldap modify
- isi auth ldap view
- isi auth local list
- isi auth local modify
- isi auth local view
- isi auth log-level modify
- isi auth log-level view
- isi auth mapping create
- isi auth mapping delete
- isi auth mapping dump
- isi auth mapping flush
- isi auth mapping import
- isi auth mapping list
- isi auth mapping modify
- isi auth mapping token
- isi auth mapping view
- isi auth netgroups view
- isi auth nis create
- isi auth nis delete
- isi auth nis list
- isi auth nis modify
- isi auth nis view
- isi auth privileges
- isi auth refresh
- isi auth roles create
- isi auth roles delete
- isi auth roles list
- isi auth roles members list
- isi auth roles modify
- isi auth roles privileges list
- isi auth roles view
- isi auth settings acls modify
- isi auth settings acls view
- isi auth settings global modify
- isi auth settings global view
- isi auth settings krb5 modify
- isi auth settings krb5 view
- isi auth settings mapping modify
- isi auth settings mapping view
- isi auth sso idps create
- isi auth sso idps delete
- isi auth sso idps list
- isi auth sso idps modify
- isi auth sso idps view
- isi auth sso settings modify
- isi auth sso settings view
- isi auth sso sp
- isi auth sso sp modify
- isi auth sso sp signing-key
- isi auth sso sp signing-key dump
- isi auth sso sp signing-key rekey
- isi auth sso sp signing-key status
- isi auth sso sp signing-key settings
- isi auth sso sp signing-key settings modify
- isi auth sso sp signing-key settings view
- isi auth sso sp view
- isi auth status
- isi auth users change-password
- isi auth users create
- isi auth users delete
- isi auth users flush
- isi auth users list
- isi auth users modify
- isi auth users reset-password
- isi auth users view
- isi batterystatus commands
- isi certificate commands
- isi certificate authority delete
- isi certificate authority import
- isi certificate authority list
- isi certificate authority modify
- isi certificate authority view
- isi certificate server delete
- isi certificate server import
- isi certificate server list
- isi certificate server modify
- isi certificate server view
- isi certificate settings modify
- isi certificate settings view
- isi cloud commands
- isi cloud access add
- isi cloud access list
- isi cloud access remove
- isi cloud access view
- isi cloud accounts create
- isi cloud accounts delete
- isi cloud accounts list
- isi cloud accounts modify
- isi cloud accounts view
- isi cloud archive
- isi cloud certificates delete
- isi cloud certificates import
- isi cloud certificates list
- isi cloud certificates modify
- isi cloud certificates view
- isi cloud jobs cancel
- isi cloud jobs create
- isi cloud jobs files list
- isi cloud jobs list
- isi cloud jobs pause
- isi cloud jobs resume
- isi cloud jobs view
- isi cloud pools create
- isi cloud pools delete
- isi cloud pools list
- isi cloud pools modify
- isi cloud pools view
- isi cloud proxies create
- isi cloud proxies delete
- isi cloud proxies list
- isi cloud proxies modify
- isi cloud proxies view
- isi cloud recall
- isi cloud restore_coi
- isi cloud settings modify
- isi cloud settings regenerate-encryption-key
- isi cloud settings view
- isi cluster commands
- isi cluster atime modify
- isi cluster atime view
- isi cluster config
- isi cluster config exports
- isi cluster config exports create
- isi cluster config exports list
- isi cluster config exports view
- isi cluster config imports
- isi cluster config imports create
- isi cluster config imports list
- isi cluster config imports view
- isi cluster config lock
- isi cluster config lock modify
- isi cluster config lock view
- isi cluster contact modify
- isi cluster contact view
- isi cluster encoding list
- isi cluster encoding modify
- isi cluster encoding view
- isi cluster identity modify
- isi cluster identity view
- isi cluster internal-networks modify
- isi cluster internal-networks view
- isi cluster join-mode modify
- isi cluster join-mode view
- isi cluster lnnset modify
- isi cluster lnnset view
- isi cluster reboot
- isi cluster shutdown
- isi cluster time modify
- isi cluster time view
- isi cluster time timezone modify
- isi cluster time timezone view
- isi compression commands
- isi config
- isi config-catalog
- isi dedupe
- isi device
- isi devices add
- isi devices config modify
- isi devices config view
- isi devices drive add
- isi devices drive firmware list
- isi devices drive firmware update list
- isi devices drive firmware update start
- isi devices drive firmware update view
- isi devices drive firmware view
- isi devices format
- isi devices list
- isi devices node add
- isi devices node list
- isi devices node smartfail
- isi devices node stopfail
- isi devices purpose
- isi devices purposelist
- isi devices smartfail
- isi devices stopfail
- isi devices suspend
- isi devices view
- isi diagnostics
- isi diagnostics gather settings modify
- isi diagnostics gather settings view
- isi diagnostics gather start
- isi diagnostics gather status
- isi diagnostics gather stop
- isi diagnostics netlogger settings modify
- isi diagnostics netlogger settings view
- isi diagnostics netlogger start
- isi diagnostics netlogger status
- isi diagnostics netlogger stop
- isi dm commands
- isi dm accounts
- isi dm accounts create
- isi dm accounts delete
- isi dm accounts list
- isi dm accounts modify
- isi dm accounts view
- isi dm base-policies
- isi dm base-policies create
- isi dm base-policies delete
- isi dm base-policies list
- isi dm base-policies modify
- isi dm base-policies view
- isi dm certificates
- isi dm datasets
- isi dm datasets list
- isi dm datasets view
- isi dm historical-jobs
- isi dm historical-jobs delete
- isi dm historial-jobs list
- isi dm jobs
- isi dm jobs list
- isi dm jobs modify
- isi dm jobs view
- isi dm policies
- isi dm policies create
- isi dm policies delete
- isi dm policies list
- isi dm policies modify
- isi dm policies view
- isi dm throttling
- isi email
- isi esrs
- isi event
- isi event alerts create
- isi event alerts delete
- isi event alerts list
- isi event alerts modify
- isi event alerts view
- isi event categories list
- isi event channels create
- isi event channels delete
- isi event channels list
- isi event channels modify
- isi event channels test
- isi event channels view
- isi event events list
- isi event events view
- isi event groups bulk
- isi event groups gather
- isi event groups list
- isi event groups modify
- isi event groups view
- isi event maintenance list
- isi event maintenance modify
- isi event maintenance view
- isi event settings modify
- isi event settings view
- isi event suppress list
- isi event suppress modify
- isi event test create
- isi event thresholds list
- isi event thresholds modify
- isi event thresholds reset
- isi event thresholds view
- isi event types list
- isi fc
- isi file-filter
- isi filepool
- isi_for_array
- isi ftp
- isi_gather_info
- isi get
- isi hardening
- isi hdfs
- isi hdfs crypto encryption-zones create
- isi hdfs crypto settings modify
- isi hdfs crypto encryption-zones list
- isi hdfs crypto settings view
- isi hdfs fsimage job settings modify
- isi hdfs fsimage job settings view
- isi hdfs fsimage job view
- isi hdfs fsimage latest delete
- isi hdfs fsimage latest view
- isi hdfs fsimage settings modify
- isi hdfs fsimage settings view
- isi hdfs inotify settings modify
- isi hdfs inotify settings view
- isi hdfs inotify stream reset
- isi hdfs inotify stream view
- isi hdfs log-level modify
- isi hdfs log-level view
- isi hdfs proxyusers create
- isi hdfs proxyusers delete
- isi hdfs proxyusers list
- isi hdfs proxyusers members list
- isi hdfs proxyusers modify
- isi hdfs proxyusers view
- isi hdfs racks create
- isi hdfs racks delete
- isi hdfs racks list
- isi hdfs racks modify
- isi hdfs racks view
- isi hdfs ranger-plugin settings modify
- isi hdfs ranger-plugin settings view
- isi hdfs settings modify
- isi hdfs settings view
- isi http settings modify
- isi http settings view
- isi http
- isi healthcheck
- isi healthcheck checklists deliver
- isi healthcheck checklists history
- isi healthcheck checklists list
- isi healthcheck checklists view
- isi healthcheck definitions install
- isi healthcheck definitions list
- isi healthcheck definitions uninstall
- isi healthcheck definitions view
- isi healthcheck evaluations cancel
- isi healthcheck evaluations gather
- isi healthcheck evaluations list
- isi healthcheck evaluations pause
- isi healthcheck evaluations resume
- isi healthcheck evaluations run
- isi healthcheck evaluations view
- isi healthcheck items list
- isi healthcheck items view
- isi healthcheck parameters delete
- isi healthcheck parameters list
- isi healthcheck parameters set
- isi healthcheck parameters view
- isi ipmi
- isi job
- isi job events list
- isi job jobs cancel
- isi job jobs list
- isi job jobs modify
- isi job jobs pause
- isi job jobs resume
- isi job jobs start
- isi job jobs view
- isi job policies create
- isi job policies delete
- isi job policies list
- isi job policies modify
- isi job policies view
- isi job reports list
- isi job reports view
- isi job settings
- isi job settings modify
- isi job settings view
- isi job statistics view
- isi job status
- isi job types list
- isi job types modify
- isi job types view
- isi keymanager
- isi keymanager cluster list
- isi keymanager cluster rekey modify
- isi keymanager cluster rekey start
- isi keymanager cluster rekey view
- isi keymanager cluster status
- isi keymanager kmip servers create
- isi keymanager kmip servers delete
- isi keymanager kmip servers modify
- isi keymanager kmip servers list
- isi keymanager kmip servers view
- isi keymanager sed rekey modify
- isi keymanager sed rekey start
- isi keymanager sed rekey view
- isi keymanager sed status
- isi keymanager sed migrate local
- isi keymanager sed migrate retry
- isi keymanager sed migrate server
- isi keymanager sed settings modify
- isi keymanager sed settings view
- isi keymanager sed status
- isi license
- isi namelength
- isi ndmp
- isi ndmp contexts delete
- isi ndmp contexts list
- isi ndmp contexts view
- isi ndmp dumpdates delete
- isi ndmp dumpdates list
- isi ndmp sessions delete
- isi ndmp sessions list
- isi ndmp sessions view
- isi ndmp settings diagnostics modify
- isi ndmp settings diagnostics view
- isi ndmp settings global modify
- isi ndmp settings global view
- isi ndmp settings preferred-ips create
- isi ndmp settings preferred-ips delete
- isi ndmp settings preferred-ips list
- isi ndmp settings preferred-ips modify
- isi ndmp settings preferred-ips view
- isi ndmp settings variables create
- isi ndmp settings variables delete
- isi ndmp settings variables list
- isi ndmp settings variables modify
- isi ndmp users create
- isi ndmp users delete
- isi ndmp users list
- isi ndmp users modify
- isi ndmp users view
- isi network
- isi network dnscache flush
- isi network dnscache modify
- isi network dnscache view
- isi network external modify
- isi network external view
- isi network firewall reset-global-policy
- isi network firewall policies clone
- isi network firewall policies create
- isi network firewall policies delete
- isi network firewall policies list
- isi network firewall policies modify
- isi network firewall policies view
- isi network firewall rules create
- isi network firewall rules delete
- isi network firewall rules list
- isi network firewall rules modify
- isi network firewall rules view
- isi network firewall services list
- isi network firewall settings modify
- isi network firewall settings view
- isi network groupnets create
- isi network groupnets delete
- isi network groupnets list
- isi network groupnets modify
- isi network groupnets view
- isi network interfaces list
- isi network pools create
- isi network pools delete
- isi network pools list
- isi network pools modify
- isi network pools rebalance-ips
- isi network pools sc-resume-nodes
- isi network pools sc-suspend-nodes
- isi network pools status
- isi network pools view
- isi network rules create
- isi network rules delete
- isi network rules list
- isi network rules modify
- isi network rules view
- isi network sc-rebalance-all
- isi network subnets create
- isi network subnets delete
- isi network subnets list
- isi network subnets modify
- isi network subnets view
- isi nfs
- isi nfs aliases create
- isi nfs aliases delete
- isi nfs aliases list
- isi nfs aliases modify
- isi nfs aliases view
- isi nfs exports check
- isi nfs exports create
- isi nfs exports delete
- isi nfs exports list
- isi nfs exports modify
- isi nfs exports reload
- isi nfs exports view
- isi nfs log-level modify
- isi nfs log-level view
- isi nfs netgroup check
- isi nfs netgroup flush
- isi nfs netgroup modify
- isi nfs nlm locks list
- isi nfs nlm locks waiters
- isi nfs nlm sessions check
- isi nfs nlm sessions delete
- isi nfs nlm sessions list
- isi nfs nlm sessions refresh
- isi nfs nlm sessions view
- isi nfs settings export modify
- isi nfs settings export view
- isi nfs settings global modify
- isi nfs settings global view
- isi nfs settings zone modify
- isi nfs settings zone view
- isi ntp
- isi performance
- isi performance datasets create
- isi performance datasets delete
- isi performance datasets list
- isi peformance datasets modify
- isi performance datasets view
- isi performance filters apply
- isi performance filters list
- isi performance filters modify
- isi performance filters remove
- isi performance filters view
- isi performance metrics list
- isi performance metrics view
- isi performance settings modify
- isi performance settings view
- isi performance workloads list
- isi performance workloads modify
- isi performance workloads pin
- isi performance workloads unpin
- isi performance workloads view
- isi quota
- isi quota quotas create
- isi quota quotas delete
- isi quota quotas list
- isi quota quotas modify
- isi quota quotas notifications clear
- isi quota quotas notifications create
- isi quota quotas notifications delete
- isi quota quotas notifications disable
- isi quota quotas notifications list
- isi quota quotas notifications modify
- isi quota quotas notifications view
- isi quota quotas view
- isi quota reports create
- isi quota reports delete
- isi quota reports list
- isi quota settings mappings create
- isi quota settings mappings delete
- isi quota settings mappings list
- isi quota settings mappings modify
- isi quota settings mappings view
- isi quota settings notifications clear
- isi quota settings notifications create
- isi quota settings notifications delete
- isi quota settings notifications list
- isi quota settings notifications modify
- isi quota settings notifications view
- isi quota settings reports modify
- isi quota settings reports view
- isi readonly
- isi s3
- isi s3 buckets create
- isi s3 buckets delete
- isi s3 buckets list
- isi s3 buckets modify
- isi s3 buckets view
- isi services s3 disable
- isi services s3 enable
- isi s3 keys create
- isi s3 keys delete
- isi s3 log-level
- isi s3 log-level modify
- isi s3 log-level view
- isi s3 mykeys create
- isi s3 mykeys delete
- isi s3 mykeys view
- isi s3 settings global modify
- isi s3 settings global view
- isi s3 settings zone modify
- isi s3 settings zone view
- isi security commands
- isi servicelight
- isi services
- isi set
- isi smb
- isi smb log-level filters create
- isi smb log-level filters delete
- isi smb log-level filters list
- isi smb log-level filters view
- isi smb log-level modify
- isi smb log-level view
- isi smb openfiles close
- isi smb openfiles list
- isi smb sessions delete
- isi smb sessions delete-user
- isi smb sessions list
- isi smb settings global modify
- isi smb settings global view
- isi smb settings shares modify
- isi smb settings shares view
- isi smb settings zone modify
- isi smb settings zone view
- isi smb shares create
- isi smb shares delete
- isi smb shares list
- isi smb shares modify
- isi smb shares permission create
- isi smb shares permission delete
- isi smb shares permission list
- isi smb shares permission modify
- isi smb shares permission view
- isi smb shares view
- isi snapshot
- isi snapshot aliases delete
- isi snapshot aliases list
- isi snapshot aliases modify
- isi snapshot aliases view
- isi snapshot locks create
- isi snapshot locks delete
- isi snapshot locks list
- isi snapshot locks modify
- isi snapshot locks view
- isi snapshot schedules create
- isi snapshot schedules delete
- isi snapshot schedules list
- isi snapshot schedules modify
- isi snapshot schedules pending list
- isi snapshot schedules view
- isi snapshot settings modify
- isi snapshot settings view
- isi snapshot snapshots create
- isi snapshot snapshots delete
- isi snapshot snapshots list
- isi snapshot snapshots modify
- isi snapshot snapshots view
- isi snapshot writable create
- isi snapshot writable delete
- isi snapshot writable list
- isi snapshot writable view
- isi snmp
- isi ssh
- isi statistics
- isi status
- isi storagepool
- isi storagepool list
- isi storagepool nodepools create
- isi storagepool nodepools delete
- isi storagepool nodepools list
- isi storagepool nodepools modify
- isi storagepool nodepools view
- isi storagepool nodetypes list
- isi storagepool settings modify
- isi storagepool settings view
- isi storagepool tiers create
- isi storagepool tiers delete
- isi storagepool tiers list
- isi storagepool tiers modify
- isi storagepool tiers view
- isi storagepool unprovisioned view
- isi supportassist
- isi swift
- isi sync
- isi sync certificates peer delete
- isi sync certificates peer import
- isi sync certificates peer list
- isi sync certificates peer modify
- isi sync certificates peer view
- isi sync certificates server delete
- isi sync certificates server import
- isi sync certificates server list
- isi sync certificates server modify
- isi sync certificates server view
- isi sync jobs cancel
- isi sync jobs list
- isi sync jobs pause
- isi sync jobs reports list
- isi sync jobs reports view
- isi sync jobs resume
- isi sync jobs start
- isi sync jobs view
- isi sync policies create
- isi sync policies delete
- isi sync policies disable
- isi sync policies enable
- isi sync policies list
- isi sync policies modify
- isi sync policies reset
- isi sync policies resolve
- isi sync policies view
- isi sync recovery allow-write
- isi sync recovery resync-prep
- isi sync reports list
- isi sync reports rotate
- isi sync reports subreports list
- isi sync reports subreports view
- isi sync reports view
- isi sync rules create
- isi sync rules delete
- isi sync rules list
- isi sync rules modify
- isi sync rules reports list
- isi sync rules reports view
- isi sync rules view
- isi sync service policies create
- isi sync service policies delete
- isi sync service policies disable
- isi sync service policies enable
- isi sync service policies list
- isi sync service policies modify
- isi sync service policies reset
- isi sync service policies resolve
- isi sync service policies view
- isi sync service recovery allow-write
- isi sync service recovery resync-prep
- isi sync service target break
- isi sync service target cancel
- isi sync service target list
- isi sync service target view
- isi sync settings modify
- isi sync settings view
- isi sync target break
- isi sync target cancel
- isi sync target list
- isi sync target reports list
- isi sync target reports subreports list
- isi sync target reports subreports view
- isi sync target reports view
- isi sync target view
- isi tape
- isi upgrade
- isi upgrade catalog clean
- isi upgrade catalog export
- isi upgrade catalog import
- isi upgrade catalog list
- isi upgrade catalog readme
- isi upgrade catalog remove
- isi upgrade catalog repair
- isi upgrade catalog verify
- isi upgrade cluster add-nodes
- isi upgrade cluster add-remaining-nodes
- isi upgrade cluster archive
- isi upgrade cluster assess
- isi upgrade cluster commit
- isi upgrade cluster drain
- isi upgrade cluster firmware
- isi upgrade cluster firmware start
- isi upgrade cluster from-version
- isi upgrade cluster nodes firmware
- isi upgrade cluster nodes list
- isi upgrade cluster nodes view
- isi upgrade cluster pause
- isi upgrade cluster resume
- isi upgrade cluster retry-last-action
- isi upgrade cluster rollback
- isi upgrade cluster reboot
- isi upgrade cluster settings
- isi upgrade cluster start
- isi upgrade cluster to-version
- isi upgrade cluster unblock
- isi upgrade cluster view
- isi upgrade patches abort
- isi upgrade patches install
- isi upgrade patches list
- isi upgrade patches uninstall
- isi upgrade patches view
- isi version
- isi worm
- isi zone
PowerScaleOneFS CLI Command Reference
isi audit settings global modify
Enables or disables global auditing for audit topics and configures auditing options.
Syntax
isi audit settings global modify [--protocol-auditing-enabled {yes | no}] [--audited-zones <zones>] [--clear-audited-zones] [--add-audited-zones <zones>] [--remove-audited-zones <zones>] [--cee-server-uris <uris>] [--clear-cee-server-uris] [--add-cee-server-uris <uris>] [--remove-cee-server-uris <uris>] [--hostname <string>] [--config-auditing-enabled {yes | no}] [--config-syslog-enabled {yes | no}] [--cee-log-time <string>] [--syslog-log-time <string>] [--config-syslog-servers <string>] [--clear-config-syslog-servers] [--add-config-syslog-servers <string>] [--remove-config-syslog-servers <string>] [--config-syslog-tls-enabled {yes | no}] [--config-syslog-certificate-id <string>] [--protocol-syslog-servers <string>] [--clear-protocol-syslog-servers] [--add-protocol-syslog-servers <string>] [--remove-protocol-syslog-servers <string> [--protocol-syslog-tls-enabled {yes | no}] [--protocol-syslog-certificate-id <string>] [--system-syslog-enabled {yes | no}] [--system-syslog-servers <string>] [--clear-system-syslog-servers] [--add-system-syslog-servers <string>] [--remove-system-syslog-servers <string>] [--system-syslog-tls-enabled {yes | no}] [--system-syslog-certificate-id <string>] [--auto-purging-enabled {yes | no}] [--retention-period <integer>] [--system-auditing-enabled {yes | no}] [{--verbose | -v}] [{--help | -h}]
Options
- --protocol-auditing-enabled {yes | no}
- Enables or disables the auditing of data-access requests through the SMB, NFS, S3, and HDFS protocols.
- --audited-zones <access zones>
- Specifies one or more access zones, separated by commas, which will be audited if protocol auditing is enabled. This option overwrites all entries in the list of access zones; to add or remove access zones without affecting current entries, use --add-audited-zones or --remove-audited-zones.
- --clear-audited-zones
- Clears the entire list of access zones to be audited if protocol auditing is enabled.
- --add-audited-zones <access zones>
- Adds one or more access zones, separated by commas, to the list of zones that will be audited if protocol auditing is enabled.
- --remove-audited-zones <access zones>
- Removes one or more access zones, separated by commas, which will be audited if protocol auditing is enabled.
- --cee-server-uris <uris>
- Specifies one or more CEE server URIs, separated by commas, where audit logs will be forwarded if protocol auditing is enabled. The OneFS CEE export service uses round robin load-balancing when exporting events to multiple CEE servers. This option overwrites all entries in the list of CEE server URIs. To add or remove URIs without affecting current entries, use --add-cee-server-uris or --remove-cee-server-uris.
- --clear-cee-server-uris
- Clears the entire list of CEE server URIs to which audit logs are forwarded if protocol auditing is enabled.
- --add-cee-server-uris <uris>
- Adds one or more CEE server URIs, separated by commas, to the list of URIs where audit logs are forwarded if protocol auditing is enabled.
- --remove-cee-server-uris <uris>
- Removes one or more CEE server URIs, separated by commas, from the list of URIs where audit logs are forwarded if protocol auditing is enabled.
- --hostname <string>
- Specifies the name of the storage cluster to use when forwarding protocol events—typically, the SmartConnect zone name. When SmartConnect is not implemented, the value must match the hostname of the cluster as your third-party audit application recognizes it. If the field is left blank, events from each node are filled with the node name (clustername + lnn). This setting is required only if needed by your third-party audit application.
- --config-auditing-enabled {yes | no}
- Enables or disables the auditing of requests made through the API for configuration changes.
- --config-syslog-enabled {yes | no}
- Enables or disables the forwarding of configuration changes to remote syslog servers.
- --cee-log-time <date>
- Specifies a date after which the audit CEE forwarder will forward protocol access logs. Specify
<date> in the following format:
[protocol]@<YYYY>-<MM>-<DD> <HH>:<MM>:<SS>
- --syslog-log-time <date>
-
Specifies a date after which the audit syslog forwarder will forward logs. To forward SMB, NFS, and HDFS traffic logs, specify protocol. To forward configuration change logs, specify config. Specify <date> in the following format:
[protocol|config]@<YYYY>-<MM>-<DD> <HH>:<MM>:<SS>
- --config-syslog-servers <string>
- Specifies a list of remote servers to which config audit logs are forwarded. You must specify the --config-syslog-servers option for each server you want to add to the list.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --clear-config-syslog-servers
- Clears the list of remote servers to which configuration change audit logs are forwarded for logging in syslog.
- --add-config-syslog-servers <string>
- Adds servers to the list of remote servers to which configuration change audit logs are forwarded for logging in syslog. You must specify the --add-config-syslog-servers option for each additional server to add.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --remove-config-syslog-servers <string>
- Removes servers from the list of remote servers to which configuration change audit logs are forwarded for loggin in syslog. You must specify the --remove-config-syslog-servers option for each server to remove.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --config-syslog-tls-enabled {yes | no}
- Enables or disables TLS encryption of config audit logs for forwarding to remote syslog servers.
- One- or two-way authentication is supported to establish the remote connection.
- One-way authentication verifies server side certificates. OneFS comes with embedded CA certificates that are used for this purpose. No additional configuration is required
- Two-way authentication verifies both server and client certificates. The server side certificate is the embedded certificate described above. For the client certificate, you must import the certificate into OneFS and identify it in the --config-syslog-certificate-id option.
- --config-syslog-certificate-id <string>
- Required only for two-way authentication for TLS connections to syslog remote servers .
- The <string> is the ID or name of an imported certificate. See the isi audit certificates syslog import command for more information. The specified certificate is presented as the audit syslog forwarder's client certificate. The certificate ID has no effect if TLS is disabled.
- --protocol-syslog-servers <string>
- Specifies a list of remote servers to which protocol audit logs are forwarded. You must specify the --protocol-syslog-servers option for each server you want to add to the list.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --clear-protocol-syslog-servers
- Clears the list of remote servers to which protocol audit logs are forwarded for logging in syslog.
- --add-protocol-syslog-servers <string>
- Adds servers to the list of remote servers to which audit protocol logs are forwarded for logging in syslog. You must specify the --add-protocol-syslog-servers option for each server to add.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --remove-protocol-syslog-servers <string>
- Removes servers from the list of remote servers to which protocol audit logs are forwarded for logging in syslog. You must specify the --remove-protocol-syslog-servers option for each server to remove.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --protocol-syslog-tls-enabled {yes | no
- Enables or disables TLS encryption of protocol audit logs for forwarding to remote syslog servers.
- One- or two-way authentication is supported to establish the remote connection.
- One-way authentication verifies server side certificates. OneFS comes with embedded CA certificates that are used for this purpose. No additional configuration is required
- Two-way authentication verifies both server and client certificates. The server side certificate is the embedded certificate described above. For the client certificate, you must import the certificate into OneFS and identify it in the --protocol-syslog-certificate-id option.
- --protocol-syslog-certificate-id <string>
- Required only for two-way authentication for TLS connections to syslog remote servers .
- The <string> is the ID or name of an imported certificate. See the isi audit certificates syslog import command for more information. The specified certificate is presented as the audit syslog forwarder's client certificate. The certificate ID has no effect if TLS is disabled.
- --system-syslog-enabled {yes | no
- Enables or disables the forwarding of system audit logs to syslog remote servers.
- --system-syslog-servers <string>
- Specifies a list of remote servers to which system audit logs are forwarded. You must specify the --system-syslog-servers option for each server you want to add to the list.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --clear-system-syslog-servers
- Clears the list of remote servers to which system audit logs are forwarded for logging in syslog.
- --add-system-syslog-servers <string>
- Adds servers to the list of remote servers to which system events are forwarded for logging in syslog. You must specify the --add-system-syslog-servers option for each server to add.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --remove-system-syslog-servers <string>
- Removes servers from the list of remote servers to which system audit logs are forwarded for logging in syslog. You must specify the --remove-system-syslog-servers option for each server to remove.
-
Specify <string> in one of the following formats:
- <ip_address>
- <hostname>
- <ip_address>:<port>
- <hostname>:<port>
A custom TCP port can be specified by using the <ip_address>:<port> or the <hostname>:<port> format.
- --system-syslog-tls-enabled {yes | no}
- Enables or disables TLS encryption of system audit logs for forwarding to remote syslog servers.
- One- or two-way authentication is supported to establish the remote connection.
- One-way authentication verifies server side certificates. OneFS comes with embedded CA certificates that are used for this purpose. No additional configuration is required
- Two-way authentication verifies both server and client certificates. The server side certificate is the embedded certificate described above. For the client certificate, you must import the certificate into OneFS and identify it in the --system-syslog-certificate-id option.
- --system-syslog-certificate-id <string>
- Required only for two-way authentication for TLS connections to syslog remote servers .
- The <string> is the ID or name of an imported certificate. See the isi audit certificates syslog import command for more information. The specified certificate is presented as the audit syslog forwarder's client certificate. The certificate ID has no effect if TLS is disabled.
- --auto-purging-enabled {yes | no}
- Enables or disables automatic purging of older audit log files.
- --retention-period <integer>
-
Purges audit log files older than the retention period. One day is the smallest unit available.
- --system-auditing-enabled {yes | no}
- Enables or disables the collection of system events by OpenBSM.
- {--verbose | -v}
- Displays the results of running the command.
- {--help | -h}
- Displays help for this command.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\