Uploaded image for project: 'Red Hat Fuse'
  1. Red Hat Fuse
  2. ENTESB-3932

Implement administrative audit logging for Fuse

    XMLWordPrintable

Details

    • Enhancement
    • Resolution: Done
    • Major
    • fuse-7.0
    • jboss-fuse-6.2
    • Fabric8 v1, Karaf
    • None
    • % %
    • 7.0 Sprint 16, Fuse 7.0 Sprint 21

    Description

      Now that Fuse (6.2) has role-based access control, it is desirable to capture administrative actions in an audit log.

      The following administrative access points should be captured:

      • Hawtio web console
      • Karaf command-line console (local and remote)
      • JMX operations (local and remote)

      The log should capture the username of the administrator where there is one (i.e., on remote operations), the time of the action, and the remote IP address (where applicable).

      Of special concern to some customers is a recording of failed authentication attempts.

      Attachments

        Issue Links

          blocks

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) CLOUD-1620 Implement optional java console per user action audit logging for A-MQ and FIS xPaaS images

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • New
          is related to

          Bug - A problem that impairs or prevents the functions of the product. ENTESB-6226 JAAS FileAuditLoginModule does not log explicit logouts

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          relates to

          Feature Request - Feature requests from customers and/or users ENTESB-8813 Integrate existing RBAC with OpenShift RBAC available in 3.7+

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              g_nodet Guillaume Nodet (Inactive)
              rhn-support-kboone Kevin Boone
              Votes:
              0 Vote for this issue
              Watchers:
              15 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: