Security Monitor
ThingWorx provides the SecurityMonitor Thing, a system object for administrators that provides events to detect when a login or logout occurs using user credentials or application keys. To disable the SecurityMonitor, de-select Enable Security Events in the Configuration view.
SecurityMonitor Events
The following events are included in the SecurityMonitor Thing:
• ApplicationKeySucceeded — Event that is triggered when a client logs into the ThingWorx server using an application key.
◦ eventData.applicationKey — Contains the application key presented to the server.
◦ eventData.message — Is blank on a successful login.
• ApplicationKeyFailed — Event that is triggered when a client fails to log into the ThingWorx server using an application key.
◦ eventData.applicationKey— Contains the application key presented to the server.
◦ eventData.message — An error message specifies the reason for failure, such as "Application Key is invalid", "Application Key has expired", or "Application Key is not on whitelist."
• LoginSucceeded — Event that is triggered when a client successfully logs into the ThingWorx server using their username and password.
◦ eventData.user — Provides the username used.
◦ eventData.message — Is blank on a successful login.
• LoginFailed — Event that is triggered when a client fails to log into the ThingWorx server using their username and password.
◦ eventData.user — Provides the username used to log in.
◦ eventData.message — An error message specifies the reason for login failure, such as "User name is invalid" or "User is in invalid state."
• Logout — Event that is triggered when a client logs out. This event is only triggered when a user explicitly logs out using the Logout button. It does not get triggered when the user's session times out.
◦ eventData.user — Provides the username of the account that logged out.
◦ event.message — Is blank on a successful logout.