Auditing Logins and Logouts

The Login/Logout Audit Logs form enables you to identify who has accessed the system. If there is an unexplained programming change or an unexpected system activity, such as an unscheduled database backup, another administrator could be responsible.

Separate logs are generated for each login and logout event. The logs are ordered by their time stamp from newest to oldest.

Log File Storage

The logs, starting with the oldest, are overwritten when the maximum file size of 2000 records is reached.

Note: The audit log file is not saved when you perform a system backup.

Audit Log ID	A unique identification number assigned to the log
Date	Date of the login or logout event
Time	Time of the login or logout event
Action	Login or Logout
User Login ID	User name of the account that performed the login or logout
Source IP Address	IP Address of the client station from which the login or logout was performed.
Login Type	The following login and logout types are logged ESM Login Page System Administration Tool Group Administration Tool Telnet E2T: Telnet to the Ethernet to TDM (E2T) processor to access a call control maintenance session Telnet RTC: Telnet to the Real Time Controller (RTC) processor to access VX Works session FTP: File Transfer Protocol session to the RTC processor to access logs and files MiXML: MiXML management session You can assign users to four different levels of system access in the User Authorization Profiles form: System Admin: allows system access through the System Administration Tool, File Transfer Protocol, and Telnet (through the RTC or E2T). Group Admin: allows access to the Group Administration Tool. Desktop Admin: allows users to access the Desktop Tool for their IP phones. Application: allows access to the MiXML management. A user with access to the Application level cannot have access to System Admin, Group Admin, or Desktop Admin levels.
User Authenticated	True: Login was successful. Note that successful login indicates that the administrator entered the password correctly. It does not mean that the administrator was able to access the system, because all of the available sessions may be in use (see Session Availability below). False: Login failed. Administrator failed to enter user name or password correctly.
Session Availability	True: Login session is available for an administrator who has entered a valid user name and password. False: Login session is not available and the administrator, even if validated, cannot access the system. For example, an administrator can successfully login with the correct user name and password but fail to get access if the maximum number of sessions allowed for the selected tool has already been reached.
Session ID	The number of administrators that can access a particular system tool is limited by the maximum number of sessions supported by that tool: System Administration Tool: 5 sessions Group Administration Tool: 5 sessions E2T Telnet: 1 session RTC Telnet: 1 session Ftp: 4 sessions MiXML: 50 sessions The Session ID numbers are only unique for the same type of system access. Therefore, you must use both the login type and the session ID to identify login and logout events from the same session or administrator.
Comments	Provides the reason for a failed login attempt or the cause of a logout. For example, "Invalid Password" or "Terminated by timeout".