[CONFSERVER-3920] Enterprise level auditing

Type: Suggestion
Resolution: Duplicate
Fix Version/s: None
Component/s: None
Labels:

Support reference count:
3
Feedback Policy:

We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.

This is a feature entry to guage the interest in Atlassian providing an enterprise level auditer.

An enterprise level auditer would be distinguishable from currently available logging services for the following reasons:

Logging information is accessible via the Administration UI.
Logging info. can be persisted in a database table if needed.
Logging priorities are configurable on a component by component basis - i.e. an admin. could choose to audit security at a detailed level but only receive general notices about content creation. This configuration would occur in the Administration UI.

Another possible point to consider is logging across a c cluster. If it ever appears the auditer might be leveraged to let admin.s administer federated logging.

Furthermore, it would be nice if the auditer could work across both Confluence and JIRA - both product customers probably have a need for this level of logging. I'm creating this issue under Confluence for the timebeing but it is a relevant consideration for JIRA also.

duplicates

CONFSERVER-6960 Administration audit trail

Closed

is related to

CONFSERVER-6960 Administration audit trail

Closed

CONFSERVER-8726 User Event Logging and Reporting

Closed

relates to

CONFCLOUD-3920 Enterprise level auditing

Closed

JRASERVER-3157 JIRA Administration Audit trail / notifications

Closed

was cloned as

JRASERVER-7846 Enterprise level auditing

Closed

mentioned in: Page Loading...; Page Loading...; Page Loading...

(1 was cloned as, 3 mentioned in)

Adam Barnes (Inactive) added a comment - 16/Feb/2016 5:40 AM

Resolving as duplicate, Audit logging is now released to Cloud. Please follow the related ticket for updates.

There is some additional/specific use cases identified on this ticket, so please feel free to raise a new suggestion if the current implementation does not cover specific use cases.

Adam Barnes (Inactive) added a comment - 16/Feb/2016 5:40 AM Resolving as duplicate, Audit logging is now released to Cloud. Please follow the related ticket for updates. There is some additional/specific use cases identified on this ticket, so please feel free to raise a new suggestion if the current implementation does not cover specific use cases.

Alex Kaufman added a comment - 28/Oct/2015 7:28 AM

For logging admin activity our new Auditor for Confluence add-on (https://marketplace.atlassian.com/plugins/com.enhancera.auditor.confauditor) can be used.

The add-on has been released just now, and we plan to take any user feedback seriously and add missing features quickly.
Your opinion is very important to us.

Alex Kaufman added a comment - 28/Oct/2015 7:28 AM For logging admin activity our new Auditor for Confluence add-on ( https://marketplace.atlassian.com/plugins/com.enhancera.auditor.confauditor ) can be used. The add-on has been released just now, and we plan to take any user feedback seriously and add missing features quickly. Your opinion is very important to us .

Alex Drummond added a comment - 23/Sep/2014 1:48 PM - edited

We definitely would like to see this for the On Demand solutions. Security are keen on more detailed auditing, particularly across Confluence and who is access what from where. The lack of this feature may result in constraints around how we use this solution moving forward, which would be a shame.

Alex Drummond added a comment - 23/Sep/2014 1:48 PM - edited We definitely would like to see this for the On Demand solutions. Security are keen on more detailed auditing, particularly across Confluence and who is access what from where. The lack of this feature may result in constraints around how we use this solution moving forward, which would be a shame.

Midori added a comment - 29/Jan/2014 11:31 AM

Albeit not really a logging tool, the Archiving Plugin addresses some of the use cases mentioned here.

> For confluence content, we'd like to gauge which content hasnt been viewed for a while, so that we can remove stale content.

It definitely tracks and reports on "content hasnt been viewed for a while", please read here.

As for stale content, it also tracks spaces and pages which expire on a user-defined date or within a user-defined period (ex: in 10 weeks after the last update). Even more, it helps you to archive pages that are not needed anymore, but can't just simply be deleted (you said Enterprise, huh? ).

Learn more

Midori added a comment - 29/Jan/2014 11:31 AM Albeit not really a logging tool, the Archiving Plugin addresses some of the use cases mentioned here. > For confluence content, we'd like to gauge which content hasnt been viewed for a while, so that we can remove stale content. It definitely tracks and reports on "content hasnt been viewed for a while", please read here . As for stale content, it also tracks spaces and pages which expire on a user-defined date or within a user-defined period (ex: in 10 weeks after the last update). Even more, it helps you to archive pages that are not needed anymore, but can't just simply be deleted (you said Enterprise , huh? ). Learn more

Guy Fraser [Adaptavist.com] added a comment - 16/Dec/2009 12:26 PM

Our stats plugin can be used to provide this level of reporting. It tracks pretty much everything that happens, and allows you to correlate to an IP address, etc. For more information contact Dan Hardiker via https://www.adaptavist.com/display/ADAPTAVIST/Contact+Us

Guy Fraser [Adaptavist.com] added a comment - 16/Dec/2009 12:26 PM Our stats plugin can be used to provide this level of reporting. It tracks pretty much everything that happens, and allows you to correlate to an IP address, etc. For more information contact Dan Hardiker via https://www.adaptavist.com/display/ADAPTAVIST/Contact+Us

AudraA added a comment - 16/Dec/2009 4:41 AM

from Ben Vaughn (United Airlines):

There's no way to track comments and other edits made to articles inside a space. IE, if Employee A gets a hold of Employee B's password and logs into a space and posts a bunch of porno to a space, we can't track down who did it because there's no IP address logs for edits. Kind of a bummer.

AudraA added a comment - 16/Dec/2009 4:41 AM from Ben Vaughn (United Airlines): There's no way to track comments and other edits made to articles inside a space. IE, if Employee A gets a hold of Employee B's password and logs into a space and posts a bunch of porno to a space, we can't track down who did it because there's no IP address logs for edits. Kind of a bummer.

Guy Fraser [Adaptavist.com] added a comment - 08/Mar/2008 10:15 PM

Just logging admin activity would be a good start.

Guy Fraser [Adaptavist.com] added a comment - 08/Mar/2008 10:15 PM Just logging admin activity would be a good start.

Robert Castaneda[ServiceRocket] added a comment - 05/Sep/2005 1:04 AM

Thanks Nick - we definately see a need for this from a few perspectives.

For confluence content, we'd like to gauge which content hasnt been viewed for a while, so that we can remove stale content.

From a user management perspective we'd like to do the same, and also view the user behaviour so that we can analyse and determine what we are doing correctly and what information in our wiki is useful to the business.

From a 'compliance' perspective - having audits on will help us resell into enterprises that not only love these sort of 'big brother' capabilities - they actually require them.

Robert Castaneda[ServiceRocket] added a comment - 05/Sep/2005 1:04 AM Thanks Nick - we definately see a need for this from a few perspectives. For confluence content, we'd like to gauge which content hasnt been viewed for a while, so that we can remove stale content. From a user management perspective we'd like to do the same, and also view the user behaviour so that we can analyse and determine what we are doing correctly and what information in our wiki is useful to the business. From a 'compliance' perspective - having audits on will help us resell into enterprises that not only love these sort of 'big brother' capabilities - they actually require them.

Assignee:: Unassigned

Reporter:: Nick Faiz [OLD] (Inactive)

Votes:: 37 Vote for this issue

Watchers:: 27 Start watching this issue

Created:: 05/Sep/2005 12:11 AM

Updated:: 19/Sep/2019 5:26 AM

Resolved:: 16/Feb/2016 5:40 AM

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Adam Barnes (Inactive) added a comment - 16/Feb/2016 5:40 AM

Expand comment: Adam Barnes (Inactive) added a comment - 16/Feb/2016 5:40 AM

Collapse comment: Alex Kaufman added a comment - 28/Oct/2015 7:28 AM

Expand comment: Alex Kaufman added a comment - 28/Oct/2015 7:28 AM

Collapse comment: Alex Drummond added a comment - 23/Sep/2014 1:48 PM, Edited by Alex Drummond - 23/Sep/2014 1:49 PM

Expand comment: Alex Drummond added a comment - 23/Sep/2014 1:48 PM, Edited by Alex Drummond - 23/Sep/2014 1:49 PM

Collapse comment: Midori added a comment - 29/Jan/2014 11:31 AM

Expand comment: Midori added a comment - 29/Jan/2014 11:31 AM

Collapse comment: Guy Fraser [Adaptavist.com] added a comment - 16/Dec/2009 12:26 PM

Expand comment: Guy Fraser [Adaptavist.com] added a comment - 16/Dec/2009 12:26 PM

Collapse comment: AudraA added a comment - 16/Dec/2009 4:41 AM

Expand comment: AudraA added a comment - 16/Dec/2009 4:41 AM

Collapse comment: Guy Fraser [Adaptavist.com] added a comment - 08/Mar/2008 10:15 PM

Expand comment: Guy Fraser [Adaptavist.com] added a comment - 08/Mar/2008 10:15 PM

Collapse comment: Robert Castaneda[ServiceRocket] added a comment - 05/Sep/2005 1:04 AM

Expand comment: Robert Castaneda[ServiceRocket] added a comment - 05/Sep/2005 1:04 AM

People

Dates