- Notes, cautions, and warnings
- Using the CLI
- Categorical list of commands
- Alphabetical list of commands
- abort copy
- abort replication
- abort scrub
- activate certificate
- activate firmware
- add disk-group
- add host-group-members
- add host-members
- add ipv6-address
- add spares
- add storage
- add volume-group-members
- check firmware-upgrade-health
- check support-assist-connection
- check support-assist-updates
- clear alerts
- clear cache
- clear disk-metadata
- clear dns-parameters
- clear events
- clear expander-status
- clear fde-keys
- clear replication-queue
- copy volume
- create certificate
- create certificate-signing-request
- create chap-record
- create host
- create host-group
- create peer-connection
- create remote-system
- create replication-set
- create schedule
- create snapshots
- create task
- create user
- create user-group
- create volume
- create volume-group
- create volume-set
- delete all-snapshots
- delete chap-records
- delete host-groups
- delete hosts
- delete initiator-nickname
- delete peer-connection
- delete pools
- delete remote-system
- delete replication-set
- delete schedule
- delete snapshot
- delete task
- delete user
- delete user-group
- delete volume-groups
- delete volumes
- dequarantine
- erase disk
- exit
- expand disk-group
- expand volume
- help
- map volume
- meta
- ping
- query metrics
- query peer-connection
- recover replication-set
- release volume
- remote
- remove certificate
- remove disk-groups
- remove host-group-members
- remove host-members
- remove ipv6-address
- remove spares
- remove volume-group-members
- replicate
- rescan
- reset all-statistics
- reset ciphers
- reset controller-statistics
- reset disk-error-statistics
- reset disk-group-statistics
- reset disk-statistics
- reset dns-management-hostname
- reset host-link
- reset host-port-statistics
- reset pool-statistics
- reset snapshot
- reset volume-statistics
- restart mc
- restart sc
- restore defaults
- resume replication-set
- rollback volume
- scrub disk-groups
- scrub volume
- send support-assist-logs
- set advanced-settings
- set alert
- set chap-record
- set ciphers
- set cli-parameters
- set controller-date
- set disk
- set disk-group
- set disk-parameters
- set dns-management-hostname
- set dns-parameters
- set email-parameters
- set enclosure
- set fde-import-key
- set fde-lock-key
- set fde-state
- set host
- set host-group
- set host-parameters
- set initiator
- set ipv6-network-parameters
- set iscsi-parameters
- set ldap-parameters
- set led
- set network-parameters
- set ntp-parameters
- set password
- set peer-connection
- set pool
- set prompt
- set protocols
- set remote-system
- set replication-set
- set schedule
- set snapshot-space
- set snmp-parameters
- set support-assist
- set support-assist-authentication
- set support-assist-connection
- set support-assist-contact
- set support-assist-proxy
- set syslog-parameters
- set system
- set task
- set user
- set user-group
- set volume
- set volume-cache-parameters
- set volume-group
- show advanced-settings
- show alert-condition-history
- show alerts
- show audit-log
- show cache-parameters
- show certificate
- show certificates
- show chap-records
- show ciphers
- show cli-parameters
- show configuration
- show controller-date
- show controller-statistics
- show controllers
- show disk-group-statistics
- show disk-groups
- show disk-parameters
- show disk-statistics
- show disks
- show dns-management-hostname
- show dns-parameters
- show email-parameters
- show enclosures
- show events
- show expander-status
- show fan-modules
- show fans
- show fde-state
- show firmware-bundles
- show firmware-update-status
- show frus
- show host-groups
- show host-phy-statistics
- show host-port statistics
- show initiators
- show inquiry
- show ipv6-addresses
- show ipv6-network-parameters
- show iscsi-parameters
- show ldap-parameters
- show license
- show maps
- show metrics-list
- show network-parameters
- show ntp-status
- show peer-connections
- show pools
- show pool-statistics
- show ports
- show power-supplies
- show protocols
- show provisioning
- show redundancy-mode
- show remote-systems
- show replication-sets
- show replication-snapshot-history
- show sas-link-health
- show schedules
- show sensor-status
- show service-tag-info
- show sessions
- show shutdown-status
- show snapshots
- show snapshot-space
- show snmp-parameters
- show support-assist
- show support-assist-contact
- show support-assist-telemetry-status
- show syslog-parameters
- show system
- show system-parameters
- show tasks
- show tiers
- show tier-statistics
- show unwritable-cache
- show user-groups
- show users
- show versions
- show volume-copies
- show volume-groups
- show volume-names
- show volume-reservations
- show volume-statistics
- show volumes
- show workload
- shutdown
- start metrics
- stop metrics
- suspend replication-set
- test
- unmap volume
- whoami
- API basetype properties
- adapt-expand-preview
- advanced-settings-table
- alerts
- audit-log
- cache-parameter
- cache-settings
- certificate-status
- certificates
- ch-contact-info-primary
- ch-contact-info-secondary
- ch-contact-status
- ch-firmware-updates
- chap-records
- ciphers
- cli-parameters
- code-load-readiness
- code-load-readiness-reasons
- communication-ports
- conditions
- controller-cache-parameters
- controller-statistics
- controllers
- copy-volumes
- cs-replicate-tasks
- cs-replication
- cs-replication-set
- current-replication-snapshots
- disk-groups
- disk-groups-preview
- disk-group-statistics
- disk-group-statistics-paged
- disk-hist-statistics
- disk-statistics
- disk-update
- dns-parameters
- drive-parameters
- drive-summary
- drives
- email-parameters
- enclosure-fru
- enclosure-list
- enclosures
- endpoints-status
- events
- eventsLogs
- expander-ports
- expander-versions
- expanders
- fan
- fan-module-versions
- fan-modules
- fc-port
- fde-state
- firmware-bundles
- firmware-versions
- fru-versions
- gateway-endpoints
- health-conditions
- heatmaps
- host
- host-group
- host-group-view
- host-port-statistics
- host-view-mappings
- initiator
- initiator-view
- inquiry
- io-modules
- ipv6-addresses
- ipv6-network-parameters
- iscsi-parameters
- iscsi-port
- ldap-parameters
- license
- local-ports
- local-ports-detail
- log-header-table
- logon-user-detail
- metrics-list
- mgmt-hostnames
- midplane-versions
- network-parameters
- ntp-status
- peer-connection-info
- peer-connections
- peer-controllers
- peer-ports
- pool-hist-statistics
- pools
- pool-statistics
- pool-summary
- port
- power-supplies
- product-info
- provisioning
- proxy-information
- psu-versions
- readcache-hist-statistics
- redundancy
- remote-ports
- remote-ports-detail
- remote-system
- replication-snapshot-history
- reset-snapshot-tasks
- resettable-statistics
- sas-host-phy-statistics
- sas-port
- sas-status-controller-a
- schedules
- security-communications-protocols
- sensors
- service-tag-info
- sessions
- show-other-MC-status
- shutdown-status
- sideplanes
- snapshots
- snapshot-with-retention-tasks
- snap-space
- snap-tasks
- snmp-parameters
- spares-preview
- status
- storage-preview
- support-assist
- support-assist-conn
- support-assist-telemetry
- syslog-parameters
- system
- system-parameters-table
- tasks
- tier-hist-statistics
- tiers
- tier-statistics
- tier-summary
- time-settings-table
- unhealthy-component
- unused-disks-preview
- unwritable-cache
- update-status-process-step
- update-status-summary
- usergroups
- users
- versions
- volume-groups
- volume-names
- volume-reservations
- volume-statistics
- volume-view
- volume-view-mappings
- volumes
- workload
- Settings changed by restore defaults
Dell PowerVault ME5 Series Storage System CLI Reference Guide
show audit-log
| Description | Shows audit log data.
All user login and logout attempts and operations performed through the CLI, PowerVault Manager, and FTP/SFTP interface are recorded in the audit log. Failed login attempts are also recorded. The audit log will contain the timestamp, username, and command that was run as well as the status code returned by that command. The audit log contains a subset of the data that is stored in controller logs. The audit log will not contain specific value changes, such as old and new settings. Audit logs record host IP information for all interfaces. Audit logs also record snmpset commands. Each controller maintains its own audit log. Each audit log can contain up to 2MB of data, after which it will wrap. Audit log data will persist after restarting the Storage Controller or running the restore defaults command. Audit logs are not associated with the managed logs feature. Audit logs will be cleared during factory refurbishment. Audit log data is not mirrored to the partner controller. In a failover scenario, the failed controller's audit log cannot be retrieved until the failed controller is recovered. When the failed controller comes back online its audit log should be accessible. |
| Minimum role | monitor |
| Syntax | show audit-log
[a|b|both] [last <number-of-entries>] |
| Parameters | a|b|both
Optional. Specifies to show the audit log for controller A, B, or both. If this parameter is omitted, the audit log is shown for the current controller. last <number-of-entries>Optional. Shows the specified number of most recent entries. If this parameter is omitted, all events are shown. |
| Output |
All audit log entries for the specified controller(s) are listed in chronological order by date and time. An entry may contain the following fields:
The session ID is logged only when authentication is successful and a session has been created. The subsystem ID and return code are for diagnostic purposes. |
| Examples | Show the audit log for controller B only.
# show audit-log b |
| Basetypes | |
| See also | show user-groups |
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\