DX NetOps

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.

There is /opt/CA/PerformanceCenter/sso/logs/SingleSignOnAuditLog*.log that stores each time a user logs in.

There is /opt/CA/PerformanceCenter/PC/logs/PCService*.log that stores when a session has been invalidated for a user (logged out or timed out).
    Session for user 'admin' (id: 1) has been invalidated. Transferring logout to SSO.

Each service logs dir has a *_request_*.log that stores each IP that accesses the system and what URL they request, if you want to track IPs.
Original Message:
Sent: 03-31-2021 02:38 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.

Hi Jeff,

Thanks for the update. I have checked the log file that you have mention but couldn't find the logs that I required. is this log update with the new release?



Thanks,
Uchira.
Original Message:
Sent: 03-31-2021 09:47 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

There is /opt/CA/PerformanceCenter/sso/logs/SingleSignOnAuditLog*.log that stores each time a user logs in.

There is /opt/CA/PerformanceCenter/PC/logs/PCService*.log that stores when a session has been invalidated for a user (logged out or timed out).
    Session for user 'admin' (id: 1) has been invalidated. Transferring logout to SSO.

Each service logs dir has a *_request_*.log that stores each IP that accesses the system and what URL they request, if you want to track IPs.
Original Message:
Sent: 03-31-2021 02:38 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.

The file is written to only when a user uses the login screen or comes in via SAML2.
We start a new SingleSignOnAuditLog*.log each day.   I don't believe we clean these up at all.

You did notice I used * to mean any character in the log filename?  That goes for the other filenames also.
Original Message:
Sent: 04-01-2021 03:56 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I have checked the log file that you have mention but couldn't find the logs that I required. is this log update with the new release?



Thanks,
Uchira.
Original Message:
Sent: 03-31-2021 09:47 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

There is /opt/CA/PerformanceCenter/sso/logs/SingleSignOnAuditLog*.log that stores each time a user logs in.

There is /opt/CA/PerformanceCenter/PC/logs/PCService*.log that stores when a session has been invalidated for a user (logged out or timed out).
    Session for user 'admin' (id: 1) has been invalidated. Transferring logout to SSO.

Each service logs dir has a *_request_*.log that stores each IP that accesses the system and what URL they request, if you want to track IPs.
Original Message:
Sent: 03-31-2021 02:38 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.

Hi Jeff,

Thanks for the update. I'm able to see user log activity from the SingleSignOnAuditLogs 

Is there an option to take the user activity log reports from CAPC?


Thanks,
Uchira.
Original Message:
Sent: 04-01-2021 10:28 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

The file is written to only when a user uses the login screen or comes in via SAML2.
We start a new SingleSignOnAuditLog*.log each day.   I don't believe we clean these up at all.

You did notice I used * to mean any character in the log filename?  That goes for the other filenames also.
Original Message:
Sent: 04-01-2021 03:56 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I have checked the log file that you have mention but couldn't find the logs that I required. is this log update with the new release?



Thanks,
Uchira.
Original Message:
Sent: 03-31-2021 09:47 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

There is /opt/CA/PerformanceCenter/sso/logs/SingleSignOnAuditLog*.log that stores each time a user logs in.

There is /opt/CA/PerformanceCenter/PC/logs/PCService*.log that stores when a session has been invalidated for a user (logged out or timed out).
    Session for user 'admin' (id: 1) has been invalidated. Transferring logout to SSO.

Each service logs dir has a *_request_*.log that stores each IP that accesses the system and what URL they request, if you want to track IPs.
Original Message:
Sent: 03-31-2021 02:38 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.

Nope, you can scrape the SSO audit logs (of logins) into something else that can report on them.
You can scrape the PCService_request*.log for IPs if you want to track what IPs access PC.
Original Message:
Sent: 07-20-2021 11:57 PM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I'm able to see user log activity from the SingleSignOnAuditLogs

Is there an option to take the user activity log reports from CAPC?


Thanks,
Uchira.
Original Message:
Sent: 04-01-2021 10:28 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

The file is written to only when a user uses the login screen or comes in via SAML2.
We start a new SingleSignOnAuditLog*.log each day.   I don't believe we clean these up at all.

You did notice I used * to mean any character in the log filename?  That goes for the other filenames also.
Original Message:
Sent: 04-01-2021 03:56 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I have checked the log file that you have mention but couldn't find the logs that I required. is this log update with the new release?



Thanks,
Uchira.
Original Message:
Sent: 03-31-2021 09:47 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

There is /opt/CA/PerformanceCenter/sso/logs/SingleSignOnAuditLog*.log that stores each time a user logs in.

There is /opt/CA/PerformanceCenter/PC/logs/PCService*.log that stores when a session has been invalidated for a user (logged out or timed out).
    Session for user 'admin' (id: 1) has been invalidated. Transferring logout to SSO.

Each service logs dir has a *_request_*.log that stores each IP that accesses the system and what URL they request, if you want to track IPs.
Original Message:
Sent: 03-31-2021 02:38 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.

It will be good like if we have rest call to get kind of information ,historical user logon activity and active user sessions
Original Message:
Sent: 07-21-2021 09:15 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

Nope, you can scrape the SSO audit logs (of logins) into something else that can report on them.
You can scrape the PCService_request*.log for IPs if you want to track what IPs access PC.
Original Message:
Sent: 07-20-2021 11:57 PM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I'm able to see user log activity from the SingleSignOnAuditLogs

Is there an option to take the user activity log reports from CAPC?


Thanks,
Uchira.
Original Message:
Sent: 04-01-2021 10:28 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

The file is written to only when a user uses the login screen or comes in via SAML2.
We start a new SingleSignOnAuditLog*.log each day.   I don't believe we clean these up at all.

You did notice I used * to mean any character in the log filename?  That goes for the other filenames also.
Original Message:
Sent: 04-01-2021 03:56 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I have checked the log file that you have mention but couldn't find the logs that I required. is this log update with the new release?



Thanks,
Uchira.
Original Message:
Sent: 03-31-2021 09:47 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

There is /opt/CA/PerformanceCenter/sso/logs/SingleSignOnAuditLog*.log that stores each time a user logs in.

There is /opt/CA/PerformanceCenter/PC/logs/PCService*.log that stores when a session has been invalidated for a user (logged out or timed out).
    Session for user 'admin' (id: 1) has been invalidated. Transferring logout to SSO.

Each service logs dir has a *_request_*.log that stores each IP that accesses the system and what URL they request, if you want to track IPs.
Original Message:
Sent: 03-31-2021 02:38 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.

will this option be available in future releases?
Original Message:
Sent: 07-21-2021 01:40 PM
From: Issac 08
Subject: CAPC user log activity

It will be good like if we have rest call to get kind of information ,historical user logon activity and active user sessions
Original Message:
Sent: 07-21-2021 09:15 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

Nope, you can scrape the SSO audit logs (of logins) into something else that can report on them.
You can scrape the PCService_request*.log for IPs if you want to track what IPs access PC.
Original Message:
Sent: 07-20-2021 11:57 PM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I'm able to see user log activity from the SingleSignOnAuditLogs

Is there an option to take the user activity log reports from CAPC?


Thanks,
Uchira.
Original Message:
Sent: 04-01-2021 10:28 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

The file is written to only when a user uses the login screen or comes in via SAML2.
We start a new SingleSignOnAuditLog*.log each day.   I don't believe we clean these up at all.

You did notice I used * to mean any character in the log filename?  That goes for the other filenames also.
Original Message:
Sent: 04-01-2021 03:56 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I have checked the log file that you have mention but couldn't find the logs that I required. is this log update with the new release?



Thanks,
Uchira.
Original Message:
Sent: 03-31-2021 09:47 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

There is /opt/CA/PerformanceCenter/sso/logs/SingleSignOnAuditLog*.log that stores each time a user logs in.

There is /opt/CA/PerformanceCenter/PC/logs/PCService*.log that stores when a session has been invalidated for a user (logged out or timed out).
    Session for user 'admin' (id: 1) has been invalidated. Transferring logout to SSO.

Each service logs dir has a *_request_*.log that stores each IP that accesses the system and what URL they request, if you want to track IPs.
Original Message:
Sent: 03-31-2021 02:38 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.

Sorry, I don't know of any current plans to enhance the audit logging for users or track active user sessions in the pipeline.
Original Message:
Sent: 07-22-2021 12:07 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

will this option be available in future releases?
Original Message:
Sent: 07-21-2021 01:40 PM
From: Issac 08
Subject: CAPC user log activity

It will be good like if we have rest call to get kind of information ,historical user logon activity and active user sessions
Original Message:
Sent: 07-21-2021 09:15 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

Nope, you can scrape the SSO audit logs (of logins) into something else that can report on them.
You can scrape the PCService_request*.log for IPs if you want to track what IPs access PC.
Original Message:
Sent: 07-20-2021 11:57 PM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I'm able to see user log activity from the SingleSignOnAuditLogs

Is there an option to take the user activity log reports from CAPC?


Thanks,
Uchira.
Original Message:
Sent: 04-01-2021 10:28 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

The file is written to only when a user uses the login screen or comes in via SAML2.
We start a new SingleSignOnAuditLog*.log each day.   I don't believe we clean these up at all.

You did notice I used * to mean any character in the log filename?  That goes for the other filenames also.
Original Message:
Sent: 04-01-2021 03:56 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi Jeff,

Thanks for the update. I have checked the log file that you have mention but couldn't find the logs that I required. is this log update with the new release?



Thanks,
Uchira.
Original Message:
Sent: 03-31-2021 09:47 AM
From: JEFFREY PINARD
Subject: CAPC user log activity

There is /opt/CA/PerformanceCenter/sso/logs/SingleSignOnAuditLog*.log that stores each time a user logs in.

There is /opt/CA/PerformanceCenter/PC/logs/PCService*.log that stores when a session has been invalidated for a user (logged out or timed out).
    Session for user 'admin' (id: 1) has been invalidated. Transferring logout to SSO.

Each service logs dir has a *_request_*.log that stores each IP that accesses the system and what URL they request, if you want to track IPs.
Original Message:
Sent: 03-31-2021 02:38 AM
From: Uchira Amarasinghe
Subject: CAPC user log activity

Hi,

Does anyone have an idea on how to collect the CAPC user log activity?


Thanks,
Uchira.