Hi everyone,
I’m working on a use case where I want to log the username of every user who logs into SailPoint IdentityIQ, even when using the default form-based login (not SSO).
Hi @Viraj ,
You can enable the login action in the audit configuration. Once enabled, you will be able to view the login audit events.
1 Like
I have enabled the Login from audit still iam not able to get the username of the loggedin user printed in syslog
Hi @Viraj ,
Have you searched the audit object with the action set to ‘Login’? Were you able to find any logs?
Please share a screenshot of the audit results
Hi @Viraj
Could you please mention your IdentityIQ version and application server name? Please also provide your log4j2 configuration if feasible.
Please check the Syslog Settings below:
I would recommend checking your log4j2.properties file located at ../WEB-INF/classes.
no logs were generated
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE Rule PUBLIC "sailpoint.dtd" "sailpoint.dtd">
<Rule name="LogLoginUsername" type="SSOAuthentication">
<Source>
<![CDATA[
log.info("User logged in: " + username);
return username;
]]>
</Source>
</Rule>
this is the rule iam using
Hi @Viraj ,
You won’t get the username directly as mentioned. The httpRequest is an input argument for rule of type SSOAuthentication. You can extract the Identity or Link from the httpRequest. Please refer to the SSOAuthentication type rule for more details.
1 Like
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.