NIM

Most actions taken on a target system are logged to NIM's internal auditing database. Activities launched from jobs, the scheduler, and applications are logged into the audit database.

Information logged to the audit database includes the date and time of the activity, which target system was affected, which objects (e.g., user accounts or groups) were affected, which attributes were changed, as well as those attributes' old and new values. In the case of groups, the act of adding or removing memberships to a particular group is logged.

NIM's applications provide administrators the ability to delegate simplify complex tasks and delegate them to non-technical personnel. Actions taken against target systems within these applications are logged for auditing purposes. Each target system action is logged, timestamped, and associated with the following information:

Action Descriptions

Every action launched within an application is logged to the auditing database. Each action is associated with the user who launched the action, the date and time they launched it, a description of the action, and—if applicable—a target system.

Unlike the other pieces of data that are logged, action descriptions are customizable and are set by NIM administrators or app developers, as shown in the screenshot below. When adding an action to a NIM app, it is important to provide relevant details on what the action is doing. This way, auditors can tell, at a glance, what actions took place.

NIM stores all auditing data within its own database. The tables of this database are queryable through the use of auditing queries. The diagram below shows the structure and relationships of NIM's auditing tables for your reference.