SessionLog
The SessionLog file keeps all sessions of Kron PAM users. You can find the log time, device IP address, globalUsername, and access protocol in the log file. The table below shows the information sent with this log.
sessionId | Specific id of the log in the Kron PAM Database. |
---|---|
username | Username by which started the session. |
Host | Kron PAM Host IP. |
hostname | The device name of the established session. |
startTime | The time when the session started. |
endTime | The time when the session finished. |
globalUserName | GlobalUserName used for authentication. |
clientIp | Source IP of the device that started the session. |
instanceName | Instance by which the session was started. |
accessProtocol | Access protocol with which the session was started. |
idleDuration | Idle duration of the user in the session. |
Syslog Version | Syslog Timestamp | Syslog Hostname | Syslog App Name | Syslog Process ID | Syslog Log Message |
---|
1 2021-04-01T10:52:52.384Z d-scon01 SyslogSenderForSessionLog - - - CEF:0|KRONTECH|singleconnect|2.20.0|100|SessionLog|10|ScSessionImpl{sessionId\='a5b418ea6490ac8585277980', userName\='admin', tenantId\='null', host\='83.91.179.22', hostName\='Linux-Test', startTime\=2021-04-01 12:14:00.396, endTime\=2021-04-01 12:14:43.817, globalUserName\='pam-test11', clientIp\='62.242.222.57', instanceName\='d-scon01',accessProtocol\='SSHv2, idleDuration\='null'} |
Syslog Version | Syslog Timestamp | Syslog Hostname | Syslog App Name | Syslog Process ID | Syslog Log Message |
---|
1 2021-04-01T10:52:52.384Z d-scon01 SyslogSenderForSessionLog - - - CEF:0|KRONTECH|singleconnect|2.20.0|100|SessionLog|10|ScSessionImpl{sessionId\='5c5bf6b3-ad83-4ead-8861-6bcec45c5330', userName\='admin', tenantId\='null', host\='83.91.179.21', host\='83.91.179.21', hostName\='Windows-Test', startTime\=2021-04-01 12:11:50.869, endTime\=null, globalUserName\='pam-test11', clientIp\='62.242.222.57', instanceName\='d-scon01', accessProtocol\='RDP', idleDuration\='null'} |