[ENTESB-3932] Implement administrative audit logging for Fuse - JBoss Issue Tracker

XML

Word

Printable

Details

Type: Enhancement
Status: Closed
Priority: Major
Resolution: Done
Affects Version/s: jboss-fuse-6.2
Fix Version/s: fuse-7.0
Component/s: Fabric8 v1, Karaf
Labels:
None
Environment:

JBoss Fuse 6.2 and earlier

Sprint:
7.0 Sprint 16, Fuse 7.0 Sprint 21

Description

Now that Fuse (6.2) has role-based access control, it is desirable to capture administrative actions in an audit log.

The following administrative access points should be captured:

Hawtio web console
Karaf command-line console (local and remote)
JMX operations (local and remote)

The log should capture the username of the administrator where there is one (i.e., on remote operations), the time of the action, and the remote IP address (where applicable).

Of special concern to some customers is a recording of failed authentication attempts.

Gliffy Diagrams

Attachments

Issue Links

blocks

CLOUD-1620 Implement optional java console per user action audit logging for A-MQ and FIS xPaaS images

is related to

ENTESB-6226 JAAS FileAuditLoginModule does not log explicit logouts

Closed

relates to

ENTESB-8813 Integrate existing RBAC with OpenShift RBAC available in 3.7+

Open

Activity

People

Assignee:

Guillaume Nodet

Reporter:

Kevin Boone

Votes:

0 Vote for this issue

Watchers:

15 Start watching this issue

Dates

Created:

03/Sep/15 4:11 AM

Updated:

21/Sep/18 10:12 AM

Resolved:

06/Dec/17 10:52 AM