Access logs will tell you who accessed what information within Identity Panel.
You can access Identity Panel access logs when access logging is enabled.
- HTTP Method, Path, and Query
- Active Security roles,
- User identifier (objectSid for on-prem, Azure Guid for the Azure Marketplace Edition)
For on-premise customer [[not hosting with SoftwareIDM in the cloud (SaaS/Azure Marketplace Edition)], the access log activation is an advanced option, and therefore, is enabled by setting the Auth:AccessLogDays parameter in config.json on the application web server.
Those hosting with SoftwareIDM SaaS-The Azure Marketplace Edition have access data retained for 30-days. This information can be made securely available to the customer makes via the API.
Access log entries may be queried from the /accesslog endpoint of the REST API.
All API requests must have either a CSRF token (typical in the web browser), or an APIKey header (typical in Panel service).
The API supports limit, skip, and sort parameters as well as filtering and file disposition. For example, to download all entries after a given timestamp as sample.json:
GET /accesslog?filter=TimeStamp gt 2017-07-28T05:00:00Z&limit=0&file=sample&mediaType=json
With appropriate access credentials and an API key header:
X-Api-Key: <api key from tools installation>