This documentation supports the 20.02 version of Remedy Single Sign-On.To view an earlier version, select the version from the Product version menu.

Reviewing audit records


As a Remedy Single Sign-On administrator, you can review the audit records for all events performed from administrator accounts.


Before you begin

For a selected tenant, enable auditing of records for administrators in the Remedy SSO Admin Console. For information about how to enable auditing, see Configuring-settings-for-Remedy-SSO-administrators.

To view the audit records

  1. Log in to the Remedy SSO Admin Console as an administrator.
  2. Click the Audit tab.

By default, the Audit tab shows all logged administrator actions for last 30 days. You can also select to view all audit data by a certain date.

SSO_Audit logs_20.02.png

The following types of events are recorded on the List of Audit Records page:

Audit event

Audit description

ADMIN_LOGIN_SUCCESS

Administrator has successfully logged in to the Remedy SSO Admin Console.

ADMIN_LOGOUT

Administrator has logged out from the Remedy SSO Admin Console.

ADMIN_USER_CREATED

An administrator user was created.

ADMIN_USER_DELETED

An administrator user was deleted.

ADMIN_USER_PWD_CHANGED

A password of an administrator user was changed.

ADMIN_USER_UPDATED

An administrator user was updated.

AUDIT_DISABLED

Auditing is disabled.

AUDIT_ENABLED

Auditing is enabled.

LAUNCHPAD_CREATED

A launchpad application was added to the Digital Service Management page.

LAUNCHPAD_DELETED

A launchpad application was deleted from the Digital Service Management page.

LAUNCHPAD_UPDATED

A launchpad application was updated on the Digital Service Management page.

LOCAL_GROUP_CREATED

A local group was created.

LOCAL_GROUP_DELETED

A local group was deleted.

LOCAL_GROUP_UPDATED

A local group was updated.

LOCAL_USER_ADDED_TO_GROUP

A local user was added to a group.

LOCAL_USER_CREATED

A local user was created.

LOCAL_USER_DELETED

A local user was deleted.

LOCAL_USER_PWD_CHANGED

A password for a local user was changed.

LOCAL_USER_REMOVED_FROM_GROUP

A local user was removed from a group.

LOCAL_USER_UPDATED

A local user was updated.

OAUTH_CLIENT_CREATED

An OAuth client was created.

OAUTH_CLIENT_DELETED

An OAuth client was deleted.

OAUTH_CLIENT_UPDATED

An OAuth client was updated.

OAUTH_TOKEN_DELETED

An OAuth token was deleted.

OPENID_JWK_CREATED

An OpenID JWK was created.

OPENID_JWK_DELETED

An OpenID JWK was deleted.

RSSO_CONFIG_CHANGED

This event is generated when any changes are made in the Remedy SSO Admin Console:

  • To the configuration of the Remedy SSO server, on the General tab.
  • To the realms configuration, on the Realms tab.

TENANT_CREATED

A tenant was created.

TENANT_DELETED

A tenant was deleted.

TENANT_UPDATED

A tenant was updated.

USER_SESSION_DELETED

A user sessions was deleted.


Note

Audit is enabled separately for every tenant, but records related to tenants management are recorded only in the SaaS tenant.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*