Expand my Community achievements bar.

Cloud Manager Audit events

Avatar

Brad_morris
Level 1

10/16/24

Request for Feature Enhancement (RFE) Summary: Extend the Cloud Manager events to include Audit related events
Use-case: I want to be able to monitor changes to environment variables, domains, ip whitelisting etc...
Current/Experienced Behavior: There is no audit trail of changes by users
Improved/Expected Behavior: Events are to provide the user, change area, previous value, new value and time of change
Environment Details (AEM version/service pack, any other specifics if applicable): Cloud Manager
Customer-name/Organization name: Spark New Zealand
Screenshot (if applicable): Not applicable, not currently provided
Code package (if applicable):  
5 Comments

Avatar

Rite18
Level 8

10/17/24

suggestion, this could be done using Adobe IO Reading Cloud Manager API and Events - but will be  custom application deployed on cloud / server less @Brad_morris  

Avatar

Brad_morris
Level 1

10/17/24

Thanks yes i'm aware of the API's, but the API's will only give me the state and not the change event. The events supported currently only relate to pipelines.

Avatar

Rite18
Level 8

10/17/24

@Brad_morris  Cloud Manager API that allows you to retrieve information on pipeline executions, environments, branches, domains, IP whitelisting, execution and others can be used for tracking, what specific you want to capture here

Avatar

Brad_morris
Level 1

10/17/24

@Rite18 , yes I am aware I have tested this API.

Via the API Approach, if I have an environment variable thats been changed, I would need to perform analysis on the variables to determine the change over time which may be long after its changed, additionally if this environment variable is a secret then we have no mechanism to track change. Therefore an event which indicates change would allow us to understand and track a change has occurred. Cloud Manager events exist today, so extending them to allow for the subscription of change would be the minimum.
Considering there is no audit report in Cloud manager and no way to stream logs, its the one part of AEMaaCS which does not have enough auditing or logging capabilities for change management. Considering the changes that could occur in Cloud Manager, it could have extreme consequences for businesses.

EG: Environment Variable secret:

{
"name": "ACCESS_KEY",
"type": "secretString",
"service": "",
"status": "ready"
},

Avatar

Rite18
Level 8

10/20/24

yes  i agree about current API limitation however my point was most of key features / access can be done using API and have custom solution including historical logs , events etc. 

Your use case is for Monitoring or specific to event audit which is nothing but a requirement to see who did what, when, and where.

Reply
Related Conversations
AEM as cloud service - "Download" button for Viewer Presets

Views

40

Likes

0

Replies

1
Cross program Content Copy in AEM as a Cloud Service

Views

52

Likes

0

Replies

1
Integrate Accessibility Testing into AEM Cloud Manager Pipeline

Views

63

Like

1

Replies

1
Alias for Environment Names in Cloud Manager

Views

108

Like

1

Replies

1
Provide a means of permission and user-management for AppBuilder Applications (through Adobe IMS, AdminConsole)

Views

59

Likes

0

Replies

1