Interpreting Admin Auditing Logs

Introduction

Admin Auditing is a feature that was introduced in Issuetrak 11.1. When this feature is enabled, a new menu item called Admin Auditing appears in the System Settings area for administrators. Navigating to this menu item enables an administrator to review changes made to various areas controlled by Sysadmins, User Administrators, and users that have limited administrative capabilities.

Audit records are stored in the Issuetrak database.  Each audit record has a Row Key that is used as a unique identifier.  The following information is presented for each audit record:

  • Date Initiated
  • Area Changed
  • Item Changed
  • Action Performed
  • Row Key (a reference to record labels in the Issuetrak database)
  • Old Value (if applicable)
  • New Value
  • Initiating User ID

Many of the logged audit items that appear on the Admin Audit Search page can be interpreted fairly easily.  In many cases, parameters can have only two possible values:  1 or 0.  Depending on the context of the setting, a 1 can be interpreted as True, On, Yes, or Active.  Similarly, a 0 can be interpreted as False, Off, No, or Inactive.  An example of such a setting is UseAdminAuditing, which has only two possible settings: True and False.

Another easy-to-interpret setting is Outgoing Email. When this feature is enabled for the first time, the Admin Audit Search page will show that no values are populated in the Old Value column, but the New Value column contains all the settings that were saved at the time the feature was enabled.

Due to the nature of how Issuetrak stores certain parameters, however, there are some items that may appear in the Admin Audits that require more explanation. 


Translating Audit Items to Useful Information

User Types

There are two User Types in Issuetrak: Agents and End Users. Issuetrak stores these user types in the database as a numeric value. The numeric value is what is displayed when changes to UserTypeID are made.

Changes to Group Membership Types will be reflected in the audit entries as a change to the UserTypeID. For that reason, a third column is provided in the table below to correlate with changes to Group Membership Types.

UserTypeID User Type Group Membership Type
1 Agent Agents Only
2 End user Any

User Defined Field (UDF) Types

UDF types are stored in the Issuetrak database as numeric values, with each value corresponding to a UDFKeyID. The numeric value for a UDFKeyID is displayed when a change is made to a UDF Type.

UDFKeyID UDF Type
1 Text
2 Large Text
3 List
4 Date
5 Decimal
6 Number
7 Yes/No











 

Users and Passwords

UserIDs are mapped to unique numeric identifiers in the Users table of the Issuetrak database.  The unique identifier column label is called UserNbr.  This label correlates to the UserNbr column in the UserPasswords table.  

Changes to user passwords will appear in the audit records as a change to the User Number, but it is actually the Row Key that changes.  When a password is changed, the New Value column for the audit record will display the UserNbr for the user account that was affected.  It is necessary to correlate the UserNbr here to the matching UserNbr in the Users table to determine which account was affected.  

Note that plaintext passwords will never appear in the Issuetrak database.  

User Logins

Each time a user account is authenticated to Issuetrak via Active Directory, multiple entries concerning User/Group/Template Permissions will be added into the audit log.  

Time Zones

Time zones are stored in the Issuetrak database using the table lookup key TimeZoneID, with each record containing a numeric value. The Admin Audits only display this numeric value. A lookup table corresponding each TimeZoneID to its respective time zone can be found below.

TimeZoneID Time Zone Dropdown Display Name
1 Afghanistan Standard Time (GMT+04:30) Kabul
2 Alaskan Standard Time (GMT-09:00) Alaska
3 Arab Standard Time (GMT+03:00) Kuwait, Riyadh
4 Arabian Standard Time (GMT+04:00) Abu Dhabi, Muscat
5 Arabic Standard Time (GMT+03:00) Baghdad
6 Atlantic Standard Time (GMT-04:00) Atlantic Time (Canada)
7 AUS Central Standard Time (GMT+09:30) Darwin
8 AUS Eastern Standard Time (GMT+10:00) Canberra, Melbourne, Sydney
9 Azores Standard Time (GMT-01:00) Azores
10 Canada Central Standard Time (GMT-06:00) Saskatchewan
11 Cape Verde Standard Time (GMT-01:00) Cape Verde Is.
12 Caucasus Standard Time (GMT+04:00) Yerevan
13 Cen. Australia Standard Time (GMT+09:30) Adelaide
14 Central America Standard Time (GMT-06:00) Central America
15 Central Asia Standard Time (GMT+06:00) Astana, Dhaka
16 Central Europe Standard Time (GMT+01:00) Belgrade, Bratislava, Budapest, Ljubljana, Prague
17 Central European Standard Time (GMT+01:00) Sarajevo, Skopje, Warsaw, Zagreb
18 Central Pacific Standard Time (GMT+11:00) Magadan, Solomon Is., New Caledonia
19 Central Standard Time (GMT-06:00) Central Time (US & Canada)
20 China Standard Time (GMT+08:00) Beijing, Chongqing, Hong Kong, Urumqi
21 Dateline Standard Time (GMT-12:00) International Date Line West
22 E. Africa Standard Time (GMT+03:00) Nairobi
23 E. Australia Standard Time (GMT+10:00) Brisbane
24 E. Europe Standard Time (GMT+02:00) Minsk
25 E. South America Standard Time (GMT-03:00) Brasilia
26 Eastern Standard Time (GMT-05:00) Eastern Time (US & Canada)
27 Egypt Standard Time (GMT+02:00) Cairo
28 Ekaterinburg Standard Time (GMT+05:00) Ekaterinburg
29 Fiji Standard Time (GMT+12:00) Fiji, Kamchatka, Marshall Is.
30 FLE Standard Time (GMT+02:00) Helsinki, Kyiv, Riga, Sofia, Tallinn, Vilnius
31 GMT Standard Time (GMT) Greenwich Mean Time : Dublin, Edinburgh, Lisbon, London
32 Greenland Standard Time (GMT-03:00) Greenland
33 Greenwich Standard Time (GMT) Casablanca, Monrovia, Reykjavik
34 GTB Standard Time (GMT+02:00) Athens, Bucharest, Istanbul
35 Hawaiian Standard Time (GMT-10:00) Hawaii
36 India Standard Time (GMT+05:30) Chennai, Kolkata, Mumbai, New Delhi
37 Iran Standard Time (GMT+03:30) Tehran
38 Israel Standard Time (GMT+02:00) Jerusalem
39 Korea Standard Time (GMT+09:00) Seoul
40 Mexico Standard Time (GMT-06:00) Guadalajara, Mexico City, Monterrey – Old
41 Mexico Standard Time 2 (GMT-07:00) Chihuahua, La Paz, Mazatlan – Old
42 Mid-Atlantic Standard Time (GMT-02:00) Mid-Atlantic
43 Mountain Standard Time (GMT-07:00) Mountain Time (US & Canada)
44 Myanmar Standard Time (GMT+06:30) Yangon (Rangoon)
45 N. Central Asia Standard Time (GMT+06:00) Almaty, Novosibirsk
46 Nepal Standard Time (GMT+05:45) Kathmandu
47 New Zealand Standard Time (GMT+12:00) Auckland, Wellington
48 Newfoundland Standard Time (GMT-03:30) Newfoundland
49 North Asia East Standard Time (GMT+08:00) Irkutsk, Ulaan Bataar
50 North Asia Standard Time (GMT+07:00) Krasnoyarsk
51 Pacific SA Standard Time (GMT-04:00) Santiago
52 Pacific Standard Time (GMT-08:00) Pacific Time (US & Canada)
53 Romance Standard Time (GMT+01:00) Brussels, Copenhagen, Madrid, Paris
54 Russian Standard Time (GMT+03:00) Moscow, St. Petersburg, Volgograd
55 SA Eastern Standard Time (GMT-03:00) Buenos Aires, Georgetown
56 SA Pacific Standard Time (GMT-05:00) Bogota, Lima, Quito, Rio Branco
57 SA Western Standard Time (GMT-04:00) Georgetown, La Paz, Manaus, San Juan
58 Samoa Standard Time (GMT-11:00) Midway Island, Samoa
59 SE Asia Standard Time (GMT+07:00) Bangkok, Hanoi, Jakarta
60 Singapore Standard Time (GMT+08:00) Kuala Lumpur, Singapore
61 South Africa Standard Time (GMT+02:00) Harare, Pretoria
62 Sri Lanka Standard Time (GMT+05:30) Sri Jayawardenepura
63 Taipei Standard Time (GMT+08:00) Taipei
64 Tasmania Standard Time (GMT+10:00) Hobart
65 Tokyo Standard Time (GMT+09:00) Osaka, Sapporo, Tokyo
66 Tonga Standard Time (GMT+13:00) Nuku'alofa
67 US Eastern Standard Time (GMT-05:00) Indiana (East)
68 US Mountain Standard Time (GMT-07:00) Arizona
69 Vladivostok Standard Time (GMT+10:00) Vladivostok
70 W. Australia Standard Time (GMT+08:00) Perth
71 W. Central Africa Standard Time (GMT+01:00) West Central Africa
72 W. Europe Standard Time (GMT+01:00) Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna
73 West Asia Standard Time (GMT+05:00) Islamabad, Karachi, Tashkent
74 West Pacific Standard Time (GMT+10:00) Guam, Port Moresby
75 Yakutsk Standard Time (GMT+09:00) Yakutsk
76 Azerbaijan Standard Time (GMT+04:00) Baku
77 Central Brazilian Standard Time (GMT-04:00) Manaus
78 Central Standard Time (Mexico) (GMT-06:00) Guadalajara, Mexico City, Monterrey – New
79 Georgian Standard Time (GMT+03:00) Tbilisi
80 Jordan Standard Time (GMT+02:00) Amman
81 Middle East Standard Time (GMT+02:00) Beirut
82 Montevideo Standard Time (GMT-03:00) Montevideo
83 Mountain Standard Time (Mexico) (GMT-07:00) Chihuahua, La Paz, Mazatlan – New
84 Namibia Standard Time (GMT+02:00) Windhoek
85 Pacific Standard Time (Mexico) (GMT-08:00) Tijuana, Baja California
86 Venezuela Standard Time (GMT-04:30) Caracas
87 UTC (UTC) Coordinated Universal Time