Skip to main content

Cyware Threat Intelligence eXchange

Audit Logs

The detailed audit logs in CTIX help administrators monitor data and ensure that users in the system follow an organization's defined protocols.

Track the following essential changes in CTIX:

  • User Activity Logs: Helps administrators track a particular user's API activity.

  • Subscriber Logs: Helps administrators track subscriber activity such as polling, inbox, and more in the system.

  • Configuration Change Logs: Helps administrators track activities related to any change in any module in the system.

View Audit Logs

View the audit logs in the system to understand who has accessed the system and what operations are performed during a given period of time.

Before you Start

  • To view User (API) Activity Logs, your user group must have View User Activity Logs permission.

  • To view Configuration Logs, your user group must have View Configuration Logs permission.

  • To view Subscriber Logs, your user group must have View Subscriber Logs permission.

Steps

  1. Navigate to Administration and select Audit Log Management.

  2. Select User (API) Activity Logs to view information on a particular user's activity. Select a record to view details about the API operations performed by the user. Use the search bar to refine your search results by:

    • Active Range: Activity of users in a particular time range.

    • Blocked Status: Users that are currently blocked or unblocked in the system.

    • Invited by: Users that invited the other users to CTIX.

    • Created Range: User activity in the created range of the users.

    • Invite Status: Users that are either invited or accepted the invite.

    • Status: Users that are active or inactive in the system.

    • User Group: Users belonging to a particular user group.

  3. Select Subscriber Logs to view subscriber activity details. Select a record to view details about the subscriber operations. Use the search bar to refine your search results by:

    • Created Range: Activity of subscribers in a particular created range

    • Last Active Date: Activity of subscribers by their last active data.

    • Organization Name: Activity of subscribers by their organization name.

    • Status: Activity of subscribers by their active or inactive status.

    • Subscriber ID: Activity of subscribers by their subscriber ID.

    • Username: Activity of subscribers by their username.

  4. Select Configuration Change Logs to view details about updates to specific modules. Select a record to view details about the subscriber operations. Use the search bar to refine your search results by:

    • Action: Search for users who performed any add, edit, or delete operations.

    • Created Range: Search for user activity in a specified created range.

    • Entity Type: Search for user activity by entity type.

    • Entity Value: Search for user activity by entity value.

    • Field/Parameter: Search for user activity by field or parameter value.

    • IP: Search for user activity by an IP address.

    • Section: Search for user activity by the modules in the CTIX application.

    • User ID: Search for user activity by the user ID.