[MNT-9642] allow audit filtering by Group Created: 20-Sep-13  Updated: 23-Sep-20

Status: Need Info
Project: Service Packs and Hot Fixes
Component/s: Auditing
Affects Version/s: 4.1.4
Fix Version/s: None

Type: Feature
Reporter: Alex Madon [X] (Inactive) Assignee: Unassigned
Resolution: Unresolved Votes: 1
Labels: Customer_Success_TBR
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified
Environment:

any


Bug Priority:
Category 2
ACT Numbers:

00134773

Premier Customer:
Yes

 Description   

Alfresco auditing system allows to filter by user using the parameter:

audit.filter.alfresco-access.transaction.user

This is interesting, however it does not fit with large organizations system management.

Typically, a large organization will put users in Groups and assign permissions to Groups.
In particular you will have a group of administrators that have admin power.

As admin can do very nasty things (like breaking alfresco) the customer wants to audit this group of admin actions.
Currently they would have to maintain the list of admin in two places:
1) the ldap directory
2) the alfresco audit config parameter: audit.filter.alfresco-access.transaction.user

This is against best practices.

Please implement a feature that would allow auditing based on groups.


Generated at Sun Oct 25 17:40:38 GMT 2020 using Jira 7.13.15#713015-sha1:7c5ddd2c3e1709974ae9c48c17df8edd3919fe2c.