Logging
ActivClient can be configured to generate log files that contain detailed information for every action performed by ActivClient. The information contained in these files might be useful to your technical support when trying to solve problems.
The ActivClient User Console provides users an interface to enable / disable logging. Additional policies are available and presented in this section.
The following tasks detail the Logging policy settings:
Restart Workstation
For the Logging policy changes to be applied, you must restart the workstation.
-
Enable ActivClient performance logging for Microsoft Windows PKI Smart Card Logon
-
Enable ActivClient performance logging for Microsoft Windows PKI Smart Card Logon
Turn on ActivClient logging
Description:
Defines if users can generate log files for every action performed by ActivClient. No security sensitive information is logged.
This might affect performance and should be activated only when required by Technical Support for troubleshooting purposes.
If this setting is not configured or disabled, then ActivClient actions are not logged.
Registry Key:HKEY_LOCAL_MACHINE\SOFTWARE\HID Global\Logging\Products\ActivClient : Enabled
Type: DWORD
Enable ActivClient performance logging for Microsoft Windows PKI Smart Card Logon
Description:
Enables the creation of entries in the Microsoft Windows Event Viewer when a Microsoft Windows PKI Smart Card Logon starts and ends. This is used to troubleshoot Microsoft Windows PKI Smart Card Logon performance.
Caution is needed when the smart card is used for other operations such as email signing or SSL authentication, as incorrect entries might be added in the Microsoft Windows Event Viewer.
If this setting is not configured or disabled, then Microsoft Windows PKI Smart Card Logon performances are not logged.
Full path to log files folder
Description:
Specifies the full path to the generated log files.
The folder where logs are generated must be created and end users must be granted write permissions to this folder.
Possible Values:
-
Not Configured
-
Enabled – displays the default value, %CommonProgramFiles%\HID Global\Logs, and can be updated
-
Disabled
The policy does not configure the path for log files of restricted processes:
-
The logs of processes running in low level integrity will always be generated in %APPDATA%\..\LocalLow\HID Global\Logs.
-
The logs of processes running in an AppContainer will always be generated in %LOCALAPPDATA%\Packages\<AppContainerName>\AC\HID Global\Logs.
Maximum number of backup files
Description:
Defines the maximum number of log file backups. The default value is 3.
It cannot be set to 0.
Possible Values:
-
Not Configured
-
Enabled – displays the default value, 3, and can be updated
-
Disabled
Maximum log file size in MB
Description:
Defines the maximum size (in megabytes) of the log files. The default size is 20 MB.
It cannot be set to 0.
Possible Values:
-
Not Configured
-
Enabled – displays the default value, 20, and can be updated
-
Disabled