dT Configuration Audit - Again
I would like to reopen this question from Elad Altshtein of Jun 03, 2012. Is there a mechanism in dynaTrace to audit configuration changes? Specifically, I am responding to queries from our information security group about the safeguarding of personal or confidential information.
I see, in the dynaTrace server log, that changes to a profile are logged, but the log entry is not very specific:
2014-07-23 15:31:26 INFO [ServerAccessController] System Profile 'Ecom Sites' updated, Revision: 2014-07-23 15:31:26, User: xyz123@ABCD1234
I would like to have a way to know that our "authorized" configuration for information capture was not changed without and approved change request. I am not interested in most of the System Profile settings, but things like activating new Web Request header parameter capture or new sensor method arguments are important because they could result in gatthering confidential information.
You may already have a way for me to do this. But if not, adding a little more to the server log entry with something like "agent group revised" or "custom sensor group revised" would be helpful.
Hi,
Which version of dynaTrace are you using? Since dT5.5 there's an audit log file (in the server log directory, Audit.x.log) that contains that information
Cheers
Perfect. We have 5.6, and I am looking at the log. Thank you for the very quick response.
Welcome the
Dynatrace Community Forums
Check out the Forum User Guide and Forum Guidelines to learn how to get started.Community Member of the Month
August 2017
Announcing Dynatrace's Community Member of the Month for August 2017, Rick B.! Click here to read more! 
