Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-13197

log that covers the role(group) modification in OpenAM

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Not a defect
    • Affects Version/s: 13.5.0, 6.0.0
    • Fix Version/s: None
    • Component/s: audit logging
    • Support Ticket IDs:

      Description

      Here is the requirement from our security team:

      We would need to monitor all types of activities done during O&M user administration.

      • Who did the change?
      • What was the change done and on which user?
      • When it was done?

      Basically “Who did what on whom and when”

      We need the following in logs:

      • Creation of a new user group
        • Who did it and when including the name of the new user group.
      • Assign policy to a new user group
        • Who did it and when including the new policy to user group associations done.
      • Create a user
        • Who did it and when including all the attributes defined for the new user.
      • Add a user to a user group
        • Who did it and when including the new user to user group associations done.
      • Add a read-only policy
        • Who did it and when including the policy to policy set associations done.
      • Add a write policy
        • Who did it and when including the policy to policy set associations done.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              steve.nolan Steve Nolan
            • Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: