EGO events related to consumers and services, users, and core operations can be collected and stored in audit logs.
Specify the location of audit log files with the parameter EGO_AUDIT_LOGDIR in ego.conf. To enable audit logs, set EGO_AUDIT_LOG=Y in ego.conf.
Both EGO audit log files present logged events in the same format. An example is provided here for each of the EGO components and corresponding events.
With the exception of egosh user logon and egosh user logoff, three events are logged for commands: logon, the command, logoff. This is because authentication is required for command-line interfaces. For the command egosh user logon and egosh user logoff, only two events are logged: logon and logoff.