cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 

Provide a way of finding out when a user last accessed the Integrity server.

Provide a way of finding out when a user last accessed the Integrity server.

 

In general, most of the companies that I have worked for, it is required (by audit) that we have a way to tell if users have not logged on to the system (or application) beyond a certain period of time.  If they have not for a certain period of time, you might need to follow up to see if they still require access and suspend it, and if perhaps it's a longer predefined time, their access and id's might be revoked.  The rules might vary slightly, but in general that's the idea.  In order to implement this type of automated system, you would need to be able to extract that information from the applicable application/s.  There currently is no way to get this information from Integrity.  We looked into a number of options i.e.

 

  • getting the information from the audit log – the information required was not available there
  • the license manager – again the information was not available
  • PTC System Monitor – this is a third party tool for monitoring performance (using dynatrace) , and it did contain information that was useful, but we cannot extract it via CLI or other connectors that we are aware of.

  

In order to get the data needed, we have to extract a user list from Integrity, and then extract the users that logged on in the last x number of days from PSM.  From the delta you can identify who has not logged on in that period.  We do this manually on a monthly basis, but require that this be done in an automated fashion daily, which cannot currently be done as far as we are aware.

 

An article in the PTC community:  CS91906 confirms that we cannot extract this information from Integrity.

 

There is also an existing community discussion on this: Re: Audit inactive users

 

It appears that there was also an RFC # 634693