VPN audit log

The Knox Generic VPN Framework includes security auditing ability to log device VPN events, regardless of the VPN client deployed. While the built-in Knox VPN Client already supports all logging needed for NIAP certification, this new audit log ability helps high-security Enterprise users meet VPN Audit Event log requirements of NIAP protection profiles and get certified, even when using third-party VPN solutions that don’t provide these audit logs natively.

Events logged

The VPN Audit Logs feature creates a security audit log entry for events including, but not limited to, the following:

• Create, activate, or remove a VPN Profile.
• Start or stop a VPN connection.
• Add or remove packages and package containers from the VPN profile.