Logging

ActivClient can be configured to generate log files that contain detailed information for every action performed by ActivClient. The information contained in these files might be useful to your technical support when trying to solve problems.

The ActivClient User Console provides users an interface to enable / disable logging. Additional policies are available and presented in this section.

Important: Restart Workstation

For the Logging policy changes to be applied, you must restart the workstation.

Note: ActivClient allows you to configure log files without necessarily having administrator rights (other ActivClient policies can only be updated with administrative rights).

Turn on ActivClient logging

Description:

Defines if users can generate log files for every action performed by ActivClient. No security sensitive information is logged.

This might affect performance and should be activated only when required by Technical Support for troubleshooting purposes.

If this setting is not configured or disabled, then ActivClient actions are not logged.

Registry Key:HKEY_LOCAL_MACHINE\SOFTWARE\HID Global\Logging\Products\ActivClient : Enabled

Type: DWORD

Enable ActivClient Performance Logging for Microsoft Windows PKI Smart Card Logon

Description:

Enables the creation of entries in the Microsoft Windows Event Viewer when a Microsoft Windows PKI Smart Card Logon starts and ends. This is used to troubleshoot Microsoft Windows PKI Smart Card Logon performance.

Caution is needed when the smart card is used for other operations such as email signing or SSL authentication, as incorrect entries might be added in the Microsoft Windows Event Viewer.

If this setting is not configured or disabled, then Microsoft Windows PKI Smart Card Logon performances are not logged.

Full Path to Log Files Folder

Description:

Specifies the full path to the generated log files.

The folder where logs are generated must be created and end users must be granted write permissions to this folder.

Possible Values:

  • Not Configured

  • Enabled – displays the default value, %CommonProgramFiles%\HID Global\Logs, and can be updated

  • Disabled

Note:

The policy does not configure the path for log files of restricted processes:

  • The logs of processes running in low level integrity will always be generated in %APPDATA%\..\LocalLow\HID Global\Logs.

  • The logs of processes running in an AppContainer will always be generated in %LOCALAPPDATA%\Packages\<AppContainerName>\AC\HID Global\Logs.

Maximum Number of Backup Files

Description:

Defines the maximum number of log file backups. The default value is 3.

It cannot be set to 0.

Possible Values:

  • Not Configured

  • Enabled – displays the default value, 3, and can be updated

  • Disabled

Maximum Log File Size in MB

Description:

Defines the maximum size (in megabytes) of the log files. The default size is 20 MB.

It cannot be set to 0.

Possible Values:

  • Not Configured

  • Enabled – displays the default value, 20, and can be updated

  • Disabled