This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Public Cloud: Audit user activity

Posted on 01-03-2019 10:26 AM
nsaini
New Member
Reply posted on --/--/---- --:-- AM

Hi

We are using public cloud. I checked that we can have audits of API, shared flow, policy, KVM ec through management api. Is it possible to get the logs/audit of user activity also on public cloud. We need to :

1. audit all failed authorisation activities

2. audit authentication and authorisation activities

3. Audit user activity

1 3 196
Topic Labels
3 REPLIES 3

Posted on --/--/---- --:-- AM
nsaini
New Member
Reply posted on --/--/---- --:-- AM

@Dino-at-Google

0 Likes

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

Authentication is not audited, if you use Apigee Edge signin. In other words, a signin or authentication event is not recorded in the Apigee Edge audit log.

If you use federated identity (SAML), then your own identity provider would keep the authentication (sign in) audit log.

re: user activity and failed authorization.

The audit log tracks all UPDATES by users. It does not track "all user activity". Specific examples:

  • If a user browses 14 different API Proxies, there is no audit record generated.
  • If a user modifies an API Proxy, this is recorded in an entry in the audit log
  • if a user attempts to deploy an API Proxy in an environment, but the request is denied because of lack of authorization, this is recorded via an entry in the audit log
  • if a user attempts to read a KVM in an environment but the request is denied, this is not recorded in the audit log.

Posted on --/--/---- --:-- AM
sasikumarchenni
New Member
Reply posted on --/--/---- --:-- AM

Thank you Dino.

0 Likes