The Check and Change Log tab displays the password and SSH key validation and reset history for the selected account.
By default, the check and change log entries displayed are for the last 24 hours. On the web client, use the Date Range drop-down to select a time frame to display and use Export to export the listed data as either a JSON or CSV file (for more information, see Exporting data). If the display does not refresh after selecting a different time interval, click the Refresh.
To access Check and Change Log:
- web client: Navigate to Asset Management | Accounts | (View Details) | Check and Change Log.
Table 75: Accounts: Check and Change Log tab properties
User |
The display name of the user that triggered the event |
Status |
The status of the transaction:
|
Reason |
A system message pertaining to the password and SSH key validation and reset activity, such as the password matches the asset, was changed successfully, or does not match the asset. |
Type |
The type of transaction:
- Check Password
- Change Password
- Check SSH Key
- Change SSH Key
NOTE: Check and Change Log only displays events that the appliance performs; that is, it only displays check and change transactions. It does not display Set Password or Set SSH Key transactions. See:
|
Date/Time |
The date of the transaction. The time stamps for transactions are based on the user's local time. |
Duration |
The amount of time the transaction took to complete. |
The Discovered SSH Keys tab displays the discovered SSH keys for the account.
To access Discovered SSH Keys:
- web client: Navigate to Asset Management | Accounts | (View Details) | Discovered SSH Keys.
Table 76: Accounts: Discovered SSH Keys tab properties
Fingerprint |
The fingerprint of the SSH key used for authentication. |
Account Status |
The status of the Safeguard account. |
SSH Key Managed |
This column will have a check mark indicating the SSH key currently in use on the account. |
Comment |
Free form comment. |
Key Type |
SSH key identity type such as RSA or DSA. For more information, see SSH Key Profiles. |
Key Length |
The supported RSA or DSA key length displays. |
Asset Name |
Name of the asset associated with the account. |
Account |
The name of the account where the SSH key was discovered. |
Date/Time Discovered |
The date and time when the SSH key was discovered. |
Use these buttons on the details toolbar.
Table 77: Accounts: Discovered SSH Keys tab toolbar
Discover SSH Keys |
Run the selected SSH Key Discovery job. A Task pop-up display which shows the progress and completion.
The button is enabled when the configuration is complete, including a profile (which has a schedule). For more information, see SSH Key Profiles tab (partitions). |
Revoke |
Use this button to revoke access for unmanaged SSH keys. |
Refresh |
Update the list of dependent assets assigned to the selected account. |
Search |
To locate a specific dependent asset in this list, enter the character string to be used to search for a match. For more information, see Search box. |
The History tab allows you to view or export the details of each operation that has affected the selected account.
To access History:
Table 78: Accounts: History tab properties
Date/Time |
The date and time of the event. |
User |
The display name of the user that triggered the event. |
Source IP |
The network DNS name or IP address of the managed system that triggered the event. |
Object Name |
The name of the selected account. |
Event |
The type of operation made to the selected account:
- Create
- Delete
- Update
- Add Membership
- Remove Membership
NOTE: A membership operation indicates a relationship change with a related or parent object such as the selected account was added or removed from the membership of an account group. |
Related Object |
The name of the related object. |
Related Object Type |
The type of the related object. |
Parent |
The name of the object to which the selected account is a child. |
Parent Object Type |
The parent object type. |
Use the controls and tabbed pages on the Accounts page to perform the following tasks to manage Safeguard for Privileged Passwords accounts: