Uploaded image for project: 'Crucible'
  1. Crucible
  2. CRUC-8130

Audit of privileged functions

    XMLWordPrintable

Details

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      Implement an audit log similar to that in Jira and Confluence to capture activities performed that require privileged access (e.g. administrative functions) in order to potentially identify malicious or unintended activity.   

      Events should include all administrative actions that can take place such as changes to system configurations, additions/removal of repositories, additions/removal of add-ons, unsuccessful logon attempts and lockouts, etc.

       Records should contain information that establishes what type of event occurred, when the event occurred, source of the event, outcomes, identity of the individual.

      Viewing the audit log should be restricted to administrators only.   

      Attachments

        Issue Links

          relates to

          Suggestion - FE-1704 Provide Audit trail

          • Not Being Considered

          Suggestion - CRUC-6233 Better audit logs to track administrator access

          • Not Being Considered

          Suggestion - CRUC-8151 Enforce limit of consecutive invalid logon attempts

          • Not Being Considered

          Activity

            People

              Unassigned Unassigned
              b998ebe3cf7c Leann Adams
              Votes:
              3 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated: