Browsing the audit log

All key activities in Crowd are tracked and recorded in the audit log. The audit log helps you diagnose problems and verify important actions for security purposes. Auditing is enabled by default.

About auditing in Crowd

The audit log doesn't record all activities in Crowd. It logs configuration changes that can affect security or the setup of Crowd.

Information recorded by Crowd

Information NOT recorded by Crowd

  • changes to the system configuration of Crowd
  • adding or removing applications, updating application configuration
  • adding or removing directories, updating directory configuration
  • creating, modifying, or removing users and groups
  • creating, modifying, or removing user attributes
  • adding or removing group memberships
  • start and end of a synchronization with a remote user directory
  • start and end of a data import
  • start and end of a data export
  • application access
  • user login failures


Viewing the audit log

To view the audit log:

  1. Log in to the Crowd Administration Console.
  2. From the top navigation bar, select Audit log.


Modifying the audit log's retention period

You can choose how long the recorded activities are stored in Crowd.

  1. Log in to the Crowd Administration Console.
  2. From the top navigation bar, select Audit log.
  3. Select Configure.
  4. Choose the retention period.

Auditing and the REST API

The audit log can also be accessed via the REST API. You can use it to:

  • Search the recorded activities
  • Export the audit log
  • Add events from external applications to the audit log

For more information about using the REST API, check out the Crowd REST documentation.



Last modified on Jan 10, 2024

Was this helpful?

Yes
No
Provide feedback about this article
Powered by Confluence and Scroll Viewport.