Unexplained changes to permissions -- is there an audit trail of changes?

• Article Type: General
• Product: Aleph
• Product Version: 17.01

Description:
On numerous occasions we have seen mysterious permissions changes. I just had one today
where a profile almost all librarians have -- were able to look at holdings, now suddenly cannot.

These are like random removals of permissions- it doesn't seem to be hacking because they would add permissions.

Is there a log or audit trail of permissions changes somewhere?

Resolution:
The z67 table has the GUI (staff) permissions. The pc program which modifies these permissions is
pc_admin_c0610. In the case where these permissions are modified, you will see the following in the $LOGDIR/pc_server_nnnn.log:

SERVICE : C0160
MODULE : ...
DESCRIPTION: Modify Permissions
ACTION : ...
PROGRAM : pc_admin_c0610

*Preceding* this in the log, you will see the log-in of user performing the update:

LOGIN - ... <----------
PROFILE - ...
UUID - ...
APP-TYPE - ...
USER-NAME - ... <----------

This will not tell you what updates any particular user has made, but it *will* show you who has made changes.

If the holdings can be viewed, but the problem is that they can't be changed, check the xxx60/pc_tab/catalog/permission.dat file.