Unexplained changes to permissions -- is there an audit trail of changes?
- Article Type: General
- Product: Aleph
- Product Version: 17.01
Description:
On numerous occasions we have seen mysterious permissions changes. I just had one today
where a profile almost all librarians have -- were able to look at holdings, now suddenly cannot.
These are like random removals of permissions- it doesn't seem to be hacking because they would add permissions.
Is there a log or audit trail of permissions changes somewhere?
Resolution:
The z67 table has the GUI (staff) permissions. The pc program which modifies these permissions is
pc_admin_c0610. In the case where these permissions are modified, you will see the following in the $LOGDIR/pc_server_nnnn.log:
SERVICE : C0160
MODULE : ...
DESCRIPTION: Modify Permissions
ACTION : ...
PROGRAM : pc_admin_c0610
*Preceding* this in the log, you will see the log-in of user performing the update:
LOGIN - ... <----------
PROFILE - ...
UUID - ...
APP-TYPE - ...
USER-NAME - ... <----------
This will not tell you what updates any particular user has made, but it *will* show you who has made changes.
If the holdings can be viewed, but the problem is that they can't be changed, check the xxx60/pc_tab/catalog/permission.dat file.
Additional Information
faq
- Article last edited: 10/8/2013