Auditing

ActivID Appliance maintains a secure, tamper-evident audit log of all authentication, administration, and authorization requests.

The audit log entries contain a complete set of data to enable a compliance-oriented view of system activities, including action, system user, end user, channel, date, time, and outcome.

Audit functions are not specific to a particular authentication class, although the parameters recorded in the audit log will vary by authentication class. For example, an entry for a device authentication request will include the device serial number, whereas an entry for a Security Questions authentication will include the prompt codes.

ActivID Appliance records all API calls in an audit log which is stored in the ActivID Appliance database along with the ActivID Appliance data for configuration.

Note: Starting with ActivID Appliance 8.2, the PII data of audit log events is anonymized.

Audit data and logs can also be used for Monitoring and Reporting.

Audit data can be archived per a defined schedule or on demand via the ActivID Console.

Topics in this section: