Operations related to user administration and user rights in QPR Metrics Server can be recorded into a log file called "SCSUserAudit.txt". If logging is enabled, the log file is generated to the "Audit" folder under the log folder that can be defined in the Server log settings of the Common section in the QPR Configuration Manager utility. To enable logging, launch QPR Configuration Manager, select Server log settings from the Common section, and select Basic logging enabled from the User audit log settings for QPR Metrics Server. By default, the logging is off.
The changes audited for user administration include changing model specific rights for the selected user(s) or group(s). The changes audited for user rights include the access level rights for a specific object(s) or branch(es).
The Structure of the Log File
The fields of the log file are separated with tabulators. Each row contains a separate transaction made for a particular user or a group.
The log file includes the following data:
Field |
Format |
Description |
|---|---|---|
TIME |
<hh>:<mm>:<ss> |
Time stamp when the transaction is made |
DATE |
<mm>/<dd>/<yy> |
Time stamp when the transaction is made |
USER LOGIN |
<user's login name> |
Login name for the user performing the transaction |
USER NAME |
<user's real name> |
Full name of the user performing the transaction |
MODEL NAME |
<model name> |
Used model |
OPERATION |
•Grant •Revoke |
Single operation performed |
TARGET USER |
<name of targeted user> |
User object against whom the operation is performed |
TARGET GROUP |
<name of targeted group> |
Group object against whom the operation is performed |
ELEMENT TYPE NAME |
<name of targeted element type> |
Element type against whom the operation is performed |
ELEMENT TYPE PERMISSION |
•<grant> None Rights •<grant> View Rights •<grant> Update Rights •<grant> Full Rights •<revoke> Rights |
Changed element type rights |
OBJECT NAME |
<name of targeted object> |
Object against whom the operation is performed |
OBJECT PERMISSION |
•<grant> None Rights •<grant> View Rights •<grant> Update Rights •<grant> Full Rights •<revoke> Rights |
Changed object specific rights |
The operations that are possible and appropriate to write are 'GRANT' and 'REVOKE'. These operations can be related to:
ELEMENT TYPE RIGHT
MODEL RIGHT
OBJECT RIGHT
The possible values for MODEL_RIGHT are as follows:
•<grant>/<revoke> Model User
•<grant>/<revoke> Model Administrator
For example:
'Revoke Model User'
'Grant Model Administrator'
Example Log File Contents
TIME |
DATE |
USER LOGIN |
USER NAME |
MODEL NAME |
OPERATION |
TARGET USER |
TARGET GROUP |
ELEMENT TYPE NAME |
ELEMENT TYPE RIGHT |
OBJECT NAME |
OBJECT RIGHT |
|---|---|---|---|---|---|---|---|---|---|---|---|
16:11:05 |
11/19/07
|
qpr |
Demo User |
Dentorex Group Scorecard |
Grant Model User
|
Full name of new user |
- |
- |
-
|
-
|
- |
16:11:09 |
11/19/07 |
qpr |
Demo User |
Dentorex Group Scorecard |
Grant Element type Right |
Full name of new user |
- |
Critical Success Factor |
View |
- |
- |
16:14:27 |
11/19/07 |
qpr |
Demo User |
Dentorex Group Scorecard |
Grant Object Right |
Full name of new user |
- |
- |
- |
Financial |
Update |
