Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-538

Provide audit logs for administrative actions in Crowd

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      I would like to have an audit trail in crowd, showing the administrative actions that were done. This would give you a clear view of what has been changed recently in crowd. Now there is no way of knowing what the crowd administrators have changed.

      Update: As of Crowd 3.2 it is possible to track the following administrative actions via a built-in audit log:

      • All user group and membership changes happening in any of your directories
      • Changes to the system configuration of Crowd
      • Adding or removing applications, updating application configuration
      • Adding or removing directories, updating directory configuration

      More info in: https://confluence.atlassian.com/crowd/crowd-3-2-release-notes-949250099.html

      For those interested in tracking user/group/membership changes, please refer to CWD-3298

            [CWD-538] Provide audit logs for administrative actions in Crowd

            We are happy to announce that we have released Crowd 3.2 in which in addition to the ability to record changes to Crowd's system configuration and modify applications and directories, the Crowd audit log now captures information about all user group and membership changes happening in any of your directories. This allows you to track all changes both done in Crowd itself, as well as synchronized from a remote directory like LDAP or Azure AD.

            The extended audit log also includes a smooth new search interface, so you will be able to quickly find exactly the user, group, application or directory you are interested in.

            More information here: https://confluence.atlassian.com/crowd/crowd-3-2-release-notes-949250099.html

            Marek Radochonski (Inactive) added a comment - We are happy to announce that we have released Crowd 3.2 in which in addition to the ability to record changes to Crowd's system configuration and modify applications and directories, the Crowd audit log now captures information about all user group and membership changes happening in any of your directories. This allows you to track all changes both done in Crowd itself, as well as synchronized from a remote directory like LDAP or Azure AD. The extended audit log also includes a smooth new search interface, so you will be able to quickly find exactly the user, group, application or directory you are interested in. More information here: https://confluence.atlassian.com/crowd/crowd-3-2-release-notes-949250099.html

            Hello,

            In case you need a complete Crowd audit log with integrated history viewer, search & filtering, this Audit for Crowd plugin also covers these needs and more :

            https://marketplace.atlassian.com/plugins/com.ovyka.crowd.ovcrwaudit/server/overview

            Vincent Kopa (Ovyka) added a comment - Hello, In case you need a complete Crowd audit log with integrated history viewer, search & filtering, this Audit for Crowd plugin also covers these needs and more : https://marketplace.atlassian.com/plugins/com.ovyka.crowd.ovcrwaudit/server/overview

            Hi All!
            I've developed a plugin for this Activity Logger by Wombats Corp
            At the moment it gives just basic information and I'm near to finish with good detailed logging
            So you are welcome to use it right now!

            P.S. don't forget to click 'Watch app' to not miss the updates.

            Roman Bubiakin [Wombats Corp] added a comment - Hi All! I've developed a plugin for this Activity Logger by Wombats Corp At the moment it gives just basic information and I'm near to finish with good detailed logging So you are welcome to use it right now! P.S. don't forget to click 'Watch app' to not miss the updates.

            Hi Brian and Kevin, we can track the request for user/group/membership changes at https://jira.atlassian.com/browse/CWD-3298

            Robert Chang added a comment - Hi Brian and Kevin, we can track the request for user/group/membership changes at https://jira.atlassian.com/browse/CWD-3298

            Brian added a comment -

            Hello,

            could you reopen the ticket, please?

            It is important to keep track of user and group changes as well

            Brian added a comment - Hello, could you reopen the ticket, please? It is important to keep track of user and group changes as well

            This doesn't log user or group changes. Just directory and application changes.

            Kevin Butterworth added a comment - This doesn't log user or group changes. Just directory and application changes.

            Crowd 2.12.0 now provides an audit log functionality for application, directory, and general configuration changes.
            Please see the Crowd documentation for more details.

            Lukasz Pater added a comment - Crowd 2.12.0 now provides an audit log functionality for application, directory, and general configuration changes. Please see the Crowd documentation for more details.

            It is well need feature for all crowd customers.

            Audit log should be implemented for all administrator actions.

            Ramesh Udari1 added a comment - It is well need feature for all crowd customers. Audit log should be implemented for all administrator actions.

            Atlassian, can we please get an update on where this is sitting in regards to the Crowd backlog? It's an absolutely critical feature for enterprise customers, we have had multiple issues in the last year where people have made modifications incorrectly in Crowd and we've been unable to work out who was responsible. For us, we don't really care about users changing passwords etc, but need to know when admins make accounts active/inactive, create accounts, change group membership and when groups are modified or deleted.

            Regards

            Maree

            Maree Milne added a comment - Atlassian, can we please get an update on where this is sitting in regards to the Crowd backlog? It's an absolutely critical feature for enterprise customers, we have had multiple issues in the last year where people have made modifications incorrectly in Crowd and we've been unable to work out who was responsible. For us, we don't really care about users changing passwords etc, but need to know when admins make accounts active/inactive, create accounts, change group membership and when groups are modified or deleted. Regards Maree

            This was a terrible short-sight on the part of the Crowd designers. I can't imagine any scenario where a user directory server should NOT have a very detailed audit log. Please expedite this request!

            Chuck Vanderwist added a comment - This was a terrible short-sight on the part of the Crowd designers. I can't imagine any scenario where a user directory server should NOT have a very detailed audit log. Please expedite this request!

              Unassigned Unassigned
              d4c8a201-bb6e-413a-92aa-4b2a881c9777 Deleted Account (Inactive)
              Votes:
              142 Vote for this issue
              Watchers:
              106 Start watching this issue

                Created:
                Updated:
                Resolved: