Default Preference Keys

Domain
com.jamf.compliancereporter

If you do not configure any preference keys, the following parameters run in Compliance Reporter by default. You can configure the default preference keys as needed for your organization.

AttributeDescription
AuditEventExcludedProcesses

Exclude specific process paths based on the subject.process\_name field in Compliance Reporter logs. The values depend on the third-party programs you want to filter.

<key>OIDCProvider</key>
<string>/usr/sbin/mDNSResponder</string>
<key>OIDCProvider</key>
<string>/usr/sbin/syslogd</string> 
AuditLevel
Configures the audit log verbosity level. Levels 0, 1, 2, and 3 can be configured. This is set to Level 1 by default.
Note:

If you are testing a Compliance Reporter trial, it is recommended that you start with Level 2.

<key>AuditLevel</key>
<string>1</string> 
TokenWatcherEnabled

Logs when smart cards are inserted and removed from the system. This is disabled by default.

<key>TokenWatcherEnabled</key>
</false> 
LogFileMaxNumberBackups

Max number of historical files to keep in /var/log/ for Compliance Reporter output. Compliance Reporter always writes logs to /var/log/JamfComplianceReporter.log. This is configured to keep 10 files by default.

<key>LogFileMaxNumberBackups</key>
<string>10</string> 
LogFileMaxSizeMegaBytes

The file size in MB at which the active file renaming is rotated from JamfComplianceReporter.log to JamfComplianceReporter.log.1. This is configured as 10 MB by default.

<key>LogFileMaxSizeMegaBytes</key>
<string>10</string> 
LogFileLocation

The location where the log file /var/log is stored. By default, this is configured to store the log file at /var/log/compliancereporter.log.

<key>LogFileLocation</key>
<string>/var/log/compliancereporter.log</string>
LogFilePermission

The file permissions on current and historical local logs. By default, this is configured as "640".

<key>LogFilePermission</key>
<string>640</string> 
LogFileOwnership

The user and group who own the local log files. By default, this is configured as "root:wheel".

<key>LogFileOwnership</key>
<string>root:wheel</string> 
AuditEventLogVerboseMessages

Logs all terminal, script, and other verbose events not included in default log output. This is disabled by default.

<key>AuditEventLogVerboseMessages</key>
</false>