Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


Add a new idea Subscribe
Status Needs more information
Workspace DataPower Gateway
Created by Guest
Created on May 3, 2024

RELATED IDEAS

Comprehensive audit logging in standard logging mode

Why - The ability to monitor for unexpected configuration change, and provide supporting evidence to any security investigation. This is required for tight security monitoring, and potentially for prosecution of rogue actors.

Who - All IBM customers using DataPower Gateway would benefit.

How - Log all administrative configuration actions of a logged-in admin user, from logon to logoff, with everything in between.

Idea priority Medium
  • Admin
    Ulas Cubuk
    Reply
    |     Jun 6, 2024

    Hi – Thank you for raising this enhancement request. This section (https://www.ibm.com/docs/en/datapower-gateway/10.5.x?topic=messages-audit-events-0x824xxxx) in our documentation contains the audit events in the 0x824XXXX range that can be written to the audit log.

    For example, [0x8240001c] event code will report a configuration addition (like key 'alice' - Configuration added). Similarly, [0x82400025] event code will report a logged-out activity.

    You mentioned that “Apparently it logs logon, only a subset of the admin actions, and not logoff.” If there are any audit events (as documented per the above link) that are not captured in your environment (like logged-out activity), I believe that would be better handled as a support case.

    But if there are any cases that are not covered with our existing audit event codes, please specify those cases. We are happy to discuss this over a meeting. (please contact <ucubuk3@uk.ibm.com>)

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.