Article Details
Id: | 17920 |
Product: | finPOWER Connect |
Type: | NEW |
Version: | 3.04.00 |
Opened: | 16/02/2021 |
Closed: | 10/03/2021 |
Released: | 30/06/2021 |
Job: | J025975 |
Auditing; Password changes are now audited if changed by a different User
If a User changed their Password an Audit Log was created to record this change. However, if an Administrator (or User Administrator) changed a different Users' Password, this change was not recorded.
This has been updated so these scenarios will also be Audited. Details will also be added to the Audit Log to identify which User changed the Password.
Event Logging (defined on a User Policy) for Password changes will be set based upon the owner of the Password, NOT the User who changed it. E.g. if User "Admin" changed the Password for User "TEST", then the User Policy for User "TEST" will apply when setting the Event Logging Severity.