Details
-
Improvement
-
Resolution: Unresolved
-
Minor
-
None
-
None
-
None
-
None
Description
Jeffrey Crawford 3 days ago
Hi Team,
There is no such thing as a read audit correct? Meaning User A looked at Group B at <timestamp>. I Imagine it would be a crazy big audit table if it were.
Chris Hyzer 3 days ago
nope
Carey Black 2 days ago
Could it be added as a feature? ( Off by default? Or maybe limited to only log for a group of users? )
Chris Bongaarts (UMN) 1 day ago
alternative: good functional logging from a UI/WS perspective (user X ran WS GetGroupMembership on group Y) (edited)
Chris Bongaarts (UMN) 1 day ago
i can see our incident response people asking for this kind of information when discovering the scope of a data breach. i.e. for FERPA, notifying the one class list that was looked at rather than all the students who could have been looked at if a grouper admin account gets compromised
Chris Hyzer 1 day ago
yes we can add that to the list
New
Jeffrey Crawford 1 hour ago
yes logs would be fine. but I would argue that we need to consider WS as well as UI.