Auditing

Have more control over your environment by tracking all the changes made within Liquit Workspace. This feature allows you to track multiple changes made on an entity as well identify potential mistakes.

The auditing events displayed here also cover entities that can't support auditing event, like variables, tags etc.

Prerequisites

For auditing to be visible within the Liquit Workspace interface, the auditing feature must first be enabled in the Database Event Collector.

Database Event Collector configuration

1. Go to Manage > System > Event Collector > Database > Filter
2. In the Auditing section, enable the type of entities you want to audit:
   • Create - Create a new entity
   • Update - Update an existing entity
   • Delete - Delete an existing entity
   • Add - Add a reference between entities
   • Remove - Remove a reference between entities
   • Action - Execute something on the server, for example export a certificate

Third Party Event Collectors

You can send auditing information to Microsoft Azure Sentinel or Splunk. To do this, go to the Filter screen of the event collector and enable the auditing for the desired entities.

Auditing across Liquit Workspace

The auditing feature is implemented also in various sections of the application, and dynamically presents information relevant to the entity or identity from which it is accessed.

Auditing events viewable within Liquit Workspace are cleaned up by the Clean auditing scheduled task.