Use this page to enable encryption for your audit records. Encrypting your audit records ensures only a user given access to the certificate used for encryption is allowed to view the audit records.
To view this administrative console page, click Security > Security auditing > Audit record encryption configuration. If Enable encryption is not selected, then all of the other fields on this panel will be disabled. Encryption is not enabled by default.
Specifies whether your audit records will be encrypted. This check box is not selected by default.
Specifies the audit keystore specified to store the encryption certificate.
A new keystore can be created by clicking on the New... button.
Specifies an existing certificate will be used from the keystore specified in the Audit keystore containing the encryption certificate field. This field is selected by default. If a keystore in the security.xml file is used, the administrator role is required.
When the Certificate in keystore field is selected, the certificate alias dropdown menu displays a list of certificate aliases contained in the keystore defined by the Audit keystore containing the encryption certificate field. Select the certificate from the dropdown menu to be used to encrypt your audit records.
Specifies that a new certificate will be created in the keystore defined by the Audit keystore containing the encryption certificate field.
When the Create a new certificate in the selected keystore is selected, the Certificate alias field is used to define the name of the certificate to be created in the keystore defined by the Audit keystore containing the encryption certificate field.
When selected, the Automatically generate certificate field specifies that the application server will automatically generate the certificate. This field is selected by default when the Create a new certificate in the selected keystore field is selected.