AnsweredAssumed Answered

Administrative role logging

Question asked by Sam Walker on Jun 1, 2020
Latest reply on Jun 2, 2020 by Steven Spicer

When adding or removing users from an Administrative role (role = Service Desk Master Policy) I do not find this action logged to the sourcetype: rsa:securid:system:syslog, rsa:securid:runtime:syslog, or rsa:securid:syslog. I would like this action to be logged to splunk. Is this possible?

Outcomes