An OOTB report which pulls out the list of successful and unsuccessful login attempts.
Reason for OOTB report:-
Considering the quick turnaround time, we want something that is readily available in the tool and can be used in Prod environment.
Writing code and promoting it to production isn’t possible within the given time frame.
What we are considering as an option :-
Navigate in the following manner -> Organization & Security -> Security Policies.
We are using the “Display Audit Log” as an option. Please refer to the button highlighted in attached picture named Screen_Shot_1.
But this returns all the unsuccessful attempts while trying to login. It runs this underlying rule Log-SecurityAudit.pzSecurityAuditTrial.
On the same landing page, if we turn on the highlighted setting to Advanced as highlighted in attached picture named Screen_Shot_2, as per Pega Help article it should be able to give us both successful and unsuccessful login attempts.
But the problem is choosing that option and clicking on submit will enable other options, which we don’t want to do as it will impact users in prod.
So can we get some help around these two options
Bypass other settings on that landing page and just choose Audit Log Level option as Advanced.
Or point us to the underlying rule that will be run when we select Audit Log Level option as Advanced. Then we can run that rule to generate a report.
***Updated by moderator: Lochan to update Categories***
***Updated by moderator: Marissa to update Feedback ID***
Thank you for posting your query on PSC. Not sure if you are aware, we are currently running an Ask the Expert session on Reporting where our experts Mike Inman and Trevor Behlman take some time out to answer design level questions on this topic. We would like to invite you to ask this question on Pega Reporting out there!
This OOTB report Log-SecurityAudit.pzSecurityAuditTrial shows both successful and unsuccessful login attempts. Please refer to the attached screen shot.
But the problem is for the above mentioned report definition to show us the successful login attempts, we need to check the option "Enable Security Policies" on the Organization and Security: Authentication -> Security Policies Landing Page.
But we can't do that, as it will enable other options such as to prompt users include special characters in their pwd, pwd should be of specific length etc. Since we have implemented SSO, so enabling the above mentioned configurations might be tricky.
Hope you got my point.
Posted: 4 years ago
Posted: 27 Mar 2017 7:23 EDT
Santanu Bhattacherjee (Santanu)
Senior Manager - Sales Automation
Platform 7.3 provides a new landing page to configure a new security events log with a wide range of event types covering many kinds of developer and user actions, including successful and unsuccessful logs. You can also have custom security events, which could be thrown from custom authentication and any other application actions you wish. In 7.3.1 we intend to import this data into a data store and provide out-of-the-box reporting and monitoring.