Purpose of API methods for logs

Identity Security Cloud (ISC) ISC Discussion and Questions
1

Hi all,

I have gone through the documentation of ISC and I have come across API based loggers.

I understood how they are used but I would like to know where these are exactly used in Identity security cloud.

Thanks in advance

2

Hi

In Sailpoint ISC all logs printed thru VA only.
To know more about logs please refer VA troubleshooting guide below reference url.

https://community.sailpoint.com/t5/IdentityNow-Connectors/Virtual-Appliance-Troubleshooting-Guide/ta-p/78735

If you are looking for any cloud rules logs you need to get it from Sailpoint team.

Best Regards,
Siva.K

1 Like
3

Hi @kanusha9,
API-based loggers are primarily used for observability and integration with external systems.
Such as:
1.Activity Monitoring and Audit Logging.
2.SIEM Integration.
3.Troubleshooting.

Thank you!

4

Hi @kanusha9

In SailPoint API-based loggers are primarily used for monitoring, auditing, and integrating identity-related events into external systems or connected systems.

Where they are exactly used in ISC:

  1. Access & Authentication Monitoring:- Log and analyze user login attempts, failures, MFA activities, and SSO behavior.
  2. Identity Lifecycle Management:- Track provisioning and de-provisioning actions across connected systems. Monitor changes to user attributes or identity status.
  3. Policy & Compliance:- Capture logs for SoD violations, access policy breaches, and generating audit reports for compliance purposes.
  4. Integration with SIEM & Monitoring Tools:- API-based loggers allow you to push event data into external systems for advanced analytics and alerting.
  5. Debugging & Troubleshooting:- Analyze logs to troubleshoot identity sync failures, errors in access approvals, or misconfigured rules.

Note:- If you want to know how to enable and add the different loggers for the available connector please check the below link:CCG Enable Debug Log by Connector - Compass

Thank you!

5

yes this is the link.can you explain in breif the purpose and where we use this?

6

Hi Anusha,

whenever ever you need to check any error details that you may have facing for different applications configuration in the SailPoint during provisioning or any other operations. To know exact root cause for the error we can utilize the VA logs I. e. ccg logs.

Best Regards,
Siva.K

1 Like
7

The link that shows is particularly for connectors only I think.

1 Like