Skip to Content

Change Logs for Download and Upload of Roles in PFCG

Hello Security Team,

One of our user has downloaded roles from PFCG and we need to find out who has done that.

Are there any change logs or report Where I can see who has downloaded and uploaded roles in PFCG?

Regards,

Deepak M

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

2 Answers

  • Best Answer
    Posted on May 12, 2015 at 03:41 AM

    Hi Deepak

    Why do you need to know? I'd be more concerned about uploading.

    Downloading won't write any change logs. At best you might find who went to PFCG in STAD or SM20 logs.

    If you want to restrict downloading roles then restrict ACTVT within S_USER_AGR for DL (Download) or UL (upload). If you have Firefighter (and it's important to restrict) then you could allow it there.

    Regards

    Colleen

    Add a comment
    10|10000 characters needed characters exceeded

    • Hi Deepak

      Change logs aren't written for download as you are effectively downloading a file. You can prevent access which is valid to do to limit who is allowed to download security. Why is downloading a problem in your system?

      For upload, change documents should exist but they won't show that you uploaded. If you see changes directly in a client then they weren't transport. Again, limit who is allowed to upload. If you have firefighter shift the authorisation there.

      Regards

      Colleen

      P.S. I haven't had access to a GRC system for over a year. I am less active in the space as quite a few others have stepped up. I read the posts but there is no value in me contributing outdated knowledge - it is far better to let the newer members with current experience jump in and answer/produce content. GRC space is a lot more active than it was 2 years ago 😊

  • author's profile photo Former Member
    Former Member
    Posted on May 12, 2015 at 02:30 PM

    Deepak,

    As long as you have security audit log enabled in the client, you should be able to see who downloaded the role or just the profile. Good luck!

    Pawan.

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.