Audit Logs For Device Access

The system provides the capability to capture logins and executed commands on devices. The relevant data is recorded in audit log for device access. 

1. Log in to System Management Page.
2. Go to Home Page > Audit Logs for Device Access to review logs related to device interactions and activities.
   
3. Filter log: You can filter the log in the following two ways:
   1. Define the period of log data you want to check: Select the From, To field to specify the time period of the audit log. 
   2. Define the scope of log data you want to check: Select Tenant and Domain to check the log for specific tenant and domain.
4. Search the log: Input keywords in the search bar. The 'Search' field supports all columns except Time/Tenant/Domain. 
5. View the log in the table below. You can view the details of the device access, such as time, username, tenant and domain, the machine, device access username, device IP, command used, and the message (status of login).
   
   The message section provides essential details about device actions, including login method, success or failure status, and executed commands. This information is valuable for monitoring and troubleshooting network devices. E.g.,
   a. Successfully logged in to device BJ*POP via SSH.
   b. Failed to log in to device BJ*POP via Telnet.
   c. Execute command "show ver" on device BJ*POP.
   In the Smart CLI, a uniform message, 'Log in device BJ*POP via SSH,' will be used for all login attempts.
6. (Optional) Click Export to export the log. The file will be exported in csv format.