I would like to reopen this question from Elad Altshtein of Jun 03, 2012. Is there a mechanism in dynaTrace to audit configuration changes? Specifically, I am responding to queries from our information security group about the safeguarding of personal or confidential information.
I see, in the dynaTrace server log, that changes to a profile are logged, but the log entry is not very specific:
2014-07-23 15:31:26 INFO [ServerAccessController] System Profile 'Ecom Sites' updated, Revision: 2014-07-23 15:31:26, User: xyz123@ABCD1234
I would like to have a way to know that our "authorized" configuration for information capture was not changed without and approved change request. I am not interested in most of the System Profile settings, but things like activating new Web Request header parameter capture or new sensor method arguments are important because they could result in gatthering confidential information.
You may already have a way for me to do this. But if not, adding a little more to the server log entry with something like "agent group revised" or "custom sensor group revised" would be helpful.
Answer by Wolfgang G. ·
Hi,
Which version of dynaTrace are you using? Since dT5.5 there's an audit log file (in the server log directory, Audit.x.log) that contains that information
Cheers
JANUARY 15, 3:00 PM GMT / 10:00 AM ET