Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
devel:documentation:audit [2019/02/27 15:04]
kotisovam no admin guide relevant, red link deleted 		devel:documentation:audit [2019/03/18 09:39] (current)
kotisovam [Login audit] language edit
Line 25: Line 25:
 ===== Login audit ===== ===== Login audit =====
  
-The audit for login contains information about user successful and failed logins. Each audit record contains information about: +The audit for login contains information about users' successful and failed login attempts. Each audit record contains information about the following
-  * Result from login (failed/success),+  * Identity (only in global agenda), 
 +  * result from login (failed/success),
   * login date,   * login date,
-  * +  * number of unsuccessful attempts, 
 +  * required password change, 
 +  * valid password from, 
 +  * valid password to, 
 +  * password blocked to.
  
-<note tip>When user (not admin, or user with permission change password to another users) change password itself, is during this change logout and login. This information is now available in audit of password change and in login audit.</note>+<note tip>When user (not admin, or user with special permissions to change passwords of other users) changes the password himself or herselfs/he is logged out and logged in upon making this change. This information is now available in audit of password changes, and in login audit.</note> 
 + 
 +{{ :devel:documentation:loginaudit.png |}}
  
 ===== Password change audit ===== ===== Password change audit =====
Line 37: Line 44:
  
 <note important>This audit store data only about password changes done against CzechIdM. When user change password only against end system (eq AD, LDAP, ...) the audit for password change will be empty</note> <note important>This audit store data only about password changes done against CzechIdM. When user change password only against end system (eq AD, LDAP, ...) the audit for password change will be empty</note>
 +
 +{{ :devel:documentation:passwordchangeaudit.png |}}
  
 ===== Add or removed roles audit ===== ===== Add or removed roles audit =====
  
 Audit contains information about added, removed and changed roles that is assigned to user. This audit agenda doesn't show role parameters. Audit contains information about added, removed and changed roles that is assigned to user. This audit agenda doesn't show role parameters.
 +
 +{{ :devel:documentation:identityroleaudit.png |}}
  
 ===== Provisioning audit ===== ===== Provisioning audit =====
  • by kotisovam