Use this page to enable signing for your audit records. Signing audit records ensures tamper-proof recording of the auditable events. Both the auditor and administrator roles are required to configure the signing of your audit data.
To view this administrative console page, click Enable signing is not selected, then all of the other fields on this panel will be disabled.
. IfSpecifies whether your audit records will be encrypted. This check box is not selected by default.
Specifies the keystore used to store the signing certificate.
Specifies an existing certificate will be used from the keystore specified in the Managed keystore containing the signing certificate field. This field is selected by default.
When the Certificate in keystore field is selected, the Certificate alias dropdown menu displays a list of certificate aliases contained in the keystore defined by the Managed keystore containing the signing certificate field. Select the certificate from the dropdown menu to be used to sign your audit records.
Specifies that a new certificate will be created in the keystore defined by the Managed keystore containing the signing certificate field.
When the Create a new certificate in the selected keystore is selected, the Certificate alias field is used to define the name of the certificate to be created in the keystore defined by the Audit keystore containing the encryption certificate field.
Specifies the certificate used for encryption will be imported into the signing keystore file and used for signing.
Specifies the application server will automatically generate the certificate. This field is selected by default when the Create a new certificate in the selected keystore field is selected.