Auditing Administration: Enhanced Reporting
Product: Windchill, Windchill PDMLink
Release: 11.0 M020
Benefit
Administrators have greater visibility into export, PDM checkout, and share actions that pose an increased risk to intellectual property. Additional attribute information is now in the Event Specific Data column of the Security Audit Report for the events reporting these actions. Auditing of these events is disabled out of the box.
Additional Details
To increase visibility into how intellectual property is handled in Windchill, the information reported on the Security Audit Report for export, PDM checkout, and share events has been expanded. Auditing of the following events can be enabled in the /Windchill/conf/auditing/configAudit.xml file:
• Export – "*/wt.events.summary.ExportSummaryEvent/"
Export events now report the context path of a master object, the context and folder path from which an object was exported, and the workspace from which a CAD document was exported.
The Event Specific Data column in the security audit log will display the following attributes, when applicable, for objects that are exported, provided auditing for export events has been enabled.
◦ Context Path of Master
◦ Exported from Context Path
◦ Exported from Folder Path
◦ Exported from Workspace
Export events are recorded in the audit log under the following circumstances:
◦ When the Export action is performed on an object
◦ When the Zip Package for Delivery action is performed on a delivery, an export event is recorded in the audit log for the package, delivery, and each object in the delivery.
◦ When the Export from Workspace action is performed on a CAD document from an embedded browser.
• PDM Checkout – "*/wt.sandbox.SandboxServiceCheckoutEvent/POST_SB_CHECKOUT_EVENT"
PDM checkouts can now be audited separately from other checkouts that are recorded when the Check Out summary event is enabled. A service event is used to track the PDM checkouts, and the PDM Checkout event type can be selected from the Available events table when configuring a security audit report query.
The Event Specific Data column in the security audit log will display the following attributes for objects that are PDM checked-out (the source objects), provided auditing for PDM checkout events has been enabled
◦ Context path
◦ Folder path
◦ Object identity
• Share – "*/wt.events.summary.ShareSummaryEvent/"
Share events now report whether the event was the initiation of sharing an object or the removal of a share, as well as the context and folder paths to which an object was shared.
The Event Specific Data column in the security audit log will display the following attributes, when applicable, for objects that are shared, provided auditing for share events has been enabled.
◦ Add Share
◦ Remove Share
◦ Shared to Context Path
◦ Shared to Folder Path
Related Information