Audit logging

Edit online

The audit login feature of webMethods API Gateway provides audit information for different categories of system transactions, events, and occurrences of specific events (for example, login attempts) over a time. Audit logs show details of events on webMethods API Gateway objects. They also record user logins, logouts, and who made specific changes. You can configure which audit events to log for a specific destination based on your auditing requirements.

You can configure webMethods API Gateway to log the auditable events for following destinations:

  • webMethods API Gateway
  • Elasticsearch

The following auditable events can be configured to write to the webMethods API Gateway audit logs:

  • Access profile management events. Access profile management consists of the following events.
    • Creation, modification, and deletion of an Access profile object.
  • Alias management events. Alias management consists of the following events.
    • Creation, modification, and deletion of an Alias object.
  • Analytics management events. Analytics management consists of the following events:
    • Archiving, purging, and restoring of analytics data in the database.
  • API management events. API management consists of the following events:
    • Creation, modification, and deletion of an API object.
    • Activation and deactivation of an API.
  • Application management events. Application management consists of the following events:
    • Creation, modification, and deletion of an Application object.
  • Approval management events. Approval management consists of the following events:
    • Approval and rejection of a request to create, register, and modify an application.
    • Approval and rejection of a request to subscribe to a package in Developer Portal.
  • Group management events. Group management consists of the following events:
    • Creation, modification, and deletion of a Group object.
  • Package management events. Package management consists of the following events:
    • Creation, modification, and deletion of a Package object.
  • Plan management events. Plan management consists of the following events:
    • Creation, modification, and deletion of a Plan object.
  • Policy management. Policy management consists of the following events:
    • Creation, modification, and deletion of a global Policy object.
    • Creation, modification, and deletion of an API level Policy object.
    • Activation and deactivation of a global policy.
    • Activation and deactivation of an API level policy.
  • Promotion management events. Promotion management consists of the following events:
    • Creation, modification, and deletion of a Stage object.
    • Promotion of an API stage.
    • Rollback operation of an API stage.
  • User management events. User management consists of the following events:
    • A user logs in or fails to log in to webMethods API Gateway.
    • A user logs out of the webMethods API Gateway.
    • Creation, modification, and deletion of a User object.
webMethods API Gateway writes the audit login data to the Audit logs dashboard (in the webMethods API Gateway user interface, go to Analytics > Audit logs). You can view and download audit logs.
Note: webMethods API Gateway's audit logging feature is implemented on an event-driven approach. By default, the webMethods API Gateway destination is enabled to log the auditable events for all areas of management, such as APIs, policies, users. Enable audit logging for the management areas in other supported destinations. Database, Digital Events, and Elasticsearch. This practice is especially important when you want to provide the audit log data to external sources for analytics and anomaly detection.