In Cymmetri, the Audit Logs serve as a vital tool to maintain transparency, accountability, and security in your identity and access setup. This feature meticulously records a detailed account of various activities, ensuring a comprehensive overview of critical events and system changes.

Cymmetri uses a high performance columnar database management system designed for online analytical processing (OLAP). Its architecture and features make it well-suited for maintaining audit logs with strong protection and tamper resistance.

Below are key capabilities that contribute to these aspects:

Data Immutability

• Append-Only Storage: The audit log storage is designed to be append-only, meaning that once data is written, it cannot be modified or deleted. This property ensures that historical audit logs remain intact and tamper-proof.

• In-Transit and At-Rest Encryption: The system supports SSL/TLS for encrypting data in transit. For data at rest, you can use filesystem-level encryption or integrate with external encryption solutions to secure audit logs.

• Snapshot Backups: The system supports taking backups of your data at any point in time, allowing you to restore audit logs in case of accidental loss or corruption.

For administrators looking to review system-related logs in Cymmetri, the process is simple. Just head to the "Audit Logs" tab within the Logs section. Here, you'll find a wealth of information, covering everything from user logins to requests for accessing applications.

Audit References

Cymmetri Audit Log maintains all events processed via Cymmetri. The events are tracked based on per object event log as per the Cymmetri logging framework. Events that become part of the the log are-

1. Human driven events processed by the system. Example- a Cymmetri Admin changing an application configuration.

2. Scheduled events processed by the system. Example- Deprovisioning job to disable Cymmetri users.

3. Events triggering associated processes as set up in the system. Example- Authentication service will verify the authentication rule to check for Passwordless or MFA based login journey.

Cymmetri goes the extra mile by capturing each and every system event, offering administrators a thorough understanding of what's happening within the platform.

For a closer look at a specific log entry, administrators can click on the eye icon next to it. This action provides a detailed response, offering insights into the exact activities that took place.

The admin can also filter the logs based on:

1. The actor who performed the event

2. The performed event

3. Start and end date of the events

4. Target and target type

5. Status of the event - all, success, and failed

Cymmetri provides a reference view for the changes occurred during an audit event.

In essence, Cymmetri's Audit Logs empower administrators with the tools they need to keep a close eye on system activities, ensuring a secure and well-documented identity and access management environment.

The "Import History" tab in Cymmetri provides a comprehensive record of all data imports, ensuring transparency and accountability in managing user and system information. This feature is designed to offer administrators insights into the history of data imports, facilitating effective tracking and auditing.

To check the import history in Cymmetri, go to the "Import History" tab within the Logs section. This area keeps track of all bulk import events, including imports for user and application assignments.

In this section, administrators can find a detailed history of import events, including:

1. File Name: The name of the file that was imported.

2. Status: The status of the import activity, indicating whether it was successful or if there were any issues.

3. Import Type: Specifies the type of import, such as user or application assignment import.

4. Created By: Shows who initiated or performed the import.

5. Created At: Indicates the timestamp of when the import occurred.

For a closer look at the import history, administrators can click on the eye icon next to a specific record. This detailed view provides insights into the imported record statuses, including:

Created Successfully in Cymmetri: Indicates records that were successfully created within the Cymmetri system during the import.

Duplicated in the System While Importing: Highlights instances where records already existed in the system, preventing duplication during the import process.

Error Occurrence During Import with Remarks: Flags any errors that occurred during the import, accompanied by remarks detailing the nature of the issue.

In Cymmetri the "Scheduler History" feature plays a crucial role in maintaining visibility and control over scheduled tasks and operations. This functionality is designed to offer administrators insights into the history of scheduled events, providing transparency, accountability, and efficient management of routine processes.

In the "Scheduler History" tab, accessible within the Logs section of Cymmetri, administrators can delve into the details of scheduled tasks, gaining insights into various aspects of the scheduler's operation. The information presented includes:

Event of the Scheduler: Specifies the type of scheduler event that took place.

1. Event of the Scheduler: Specifies the type of scheduler event that took place.

2. Description: Provides a brief description of the scheduled task or operation.

3. Operation Performed on the Scheduled Period: Outlines the specific action executed during the scheduled period.

4. Planned At: Indicates when the scheduler was initially planned or scheduled.

5. Sub Event: Offers details about any sub-events associated with the scheduler operation.

6. Executed At: Specifies the timestamp when the scheduler was executed.

7. Execution Status: Highlights the status of the scheduler execution, indicating whether it was successful or encountered issues.

8. Remarks (If Any): Includes any additional remarks or notes related to the scheduler operation, offering insights into the execution process.

Failed Jobs

The scheduler history provides various filters to identify status of failed jobs as shown below:

These failed jobs are sent out as alerts to specified users as per the notifications template

Reconciliation History

Reconciliation History provides a centralized dashboard for all system reconciliation jobs in one page. The relevant admin user can view the summary of all the tasks in progress, completed or aborted.

The tasks that have failed can be manually processed to run again by clicking on the retry button next to the failed history.

The Reconciliation job will also alert the specified Cymmetri user of the tasks over email. The configuration is two-fold-

1. Global notification

2. Specific application notification

Cymmetri includes the ability to retry failed records based on the failed event. Administrators can configure the maximum number of retry attempts and set up notifications according to these settings.

Cymmetri will send the alerts for all job status events to the specified user or email.