4 Replies Latest reply on Jul 7, 2015 7:47 AM by Elizabeth Lettie

    Auditing the User Manager

    Elizabeth Lettie Expert

      Greetings, Everyone!

      Do you currently have a way to track activities in the user manager? We like to be able to see things like who locked a specific account and when it happened. There is an update date on the user record in inspector, but it doesn't indicate what was changed or who changed it.

        • Re: Auditing the User Manager
          Glenn Magnant Journeyman

          There isn't a feature used explicitly to audit the user manager.  Typically, users are maintained via integration with an external system;i.e.the ERP system.

           

          For those who maintain the users manually, I'd suggest enabling the Audit Log feature that writes a transaction log out to a log file.  This is not as nice as being able to query, such as it done in inspector, but it will capture the user's actions from the administrator.  However, I doubt it will capture specifically which account was locked as there is a limit to the granularity of information written out to the log.

           

          Reference the following article in Knowledge for some more detail:

          https://connect.ariba.com/AC_Content_Details_Page/1,,161_148423,00.html

           

          Hope this helps

           

          -Glenn

            • Re: Auditing the User Manager
              Elizabeth Lettie Expert

              Hi Glenn,

              Thanks for the input! Can you please send me the reference number on that article? For some reason, I can't pull it up via that link.

               

              It is disappointing that there is not some way to get more detail on the logging. I don't know how helpful it will be if we can't see what user account was locked.

                • Re: Auditing the User Manager
                  Glenn Magnant Journeyman

                  The item I linked to essentially was a Q and A thread to support on the Auditing functionality in 9r1. 

                  Here was the content of that thread.  The bulleted items are the answers to the numbered questions.

                   

                  1) Is user auditing turn on for Ariba 9r1  and Ariba Buyer 8.2? 

                  •   Yes, there is user auditing in Ariba Buyer 9r1. You can see the records in “Core Administration” --> “Server Manager” --> “Audit Log” section.

                  2) What kind of users’ actions are audited ?

                  •  User login activities and actions performed using Ariba Administrator (For Example, ran a scheduled task, ran a Data import/export task,etc).    

                          Note: This only gives brief information.

                  3) Are user actions on transactions e.g Person A create Transaction X, Person B makes change to Transaction etc  audited?.

                  •  No. Only the actions which are done inside the Administrator and user login activities are audited.

                  4) How can we retrieve the audit data ? Are audit data stored in objects or in tables that are  hidden from customer ?  Can it be exported out to Excel or CSV formats ?

                  • This can be retrieved via Audit Log under Core Administration --> Server manager. The data is retrieved directly from the database. You can export the data to Excel.

                  5) How much audit history does Ariba retain  ?

                  •  All the data related to user login activities and actions performed in Ariba administrator which is stored in the database can be retrieved.

                  6)  Can the audit data be retrieved from backend ?  What are the objects / tables / columns ?

                  •  It might be possible to retrieve the data from the back end. But this might be complex as the data in this table may be linked to many other tables/schemas.

                  •  There is a Cluster root, ariba.app.core.StaticAuditInfo which is involved in retrieving data. The corresponding table in the SQL database is StaticAuditInfoTab. The columns in this table are involved in fetching the data.

                  Note: You can see this be enabling aql.Query/Debug and searching for any user whose audit info you want to see under Core Administration  Audit Log.

                  1 of 1 people found this helpful