Question

Third Party Auditing for Weblink Public Portal Users

Audit Trail Laserfiche

Updated July 31, 2018

asked on July 18, 2018

I have a customer who has inquired about the possibility of using a third party auditing program to keep logs of those logging into Weblink via the Public Portal. Obviously audit trail cannot do so as it will show up under the one account name. The only way I could see this happening is if said third party program could track IP addresses. Curious if anyone else has ever experienced this issue, thanks!

“Has Laserfiche ever worked with a third party software group to provide user registration to access a WebLink public portal? I am being asked if auditing could be turned on for public portal users but I do not see how this could be done if everyone is using the same account through the public portal.”

0 0

Replies

replied on July 18, 2018

What you are after would be Advanced Logging for IIS. There are many interfaces available to output the data, but they all are just reporting from the IIS log files. You may get better/more information if you ask about IIS site loging in an IIS forums.

0 0

replied on July 19, 2018

It really depends on what your requirements are. Of course all portal connections will use the same credentials for Laserfiche, so auditing within the repository won't see differences between users.

"User registration" sounds like you will be authenticating users outside of public portal. In that case, that system should be able to provide information about when users accessed the system. Do you have such a system in mind, or is this more hypothetical?

0 0

replied on July 26, 2018

We are looking at the feasibility of tracking user activity from a port accessible outside the city network. We understand that for the WebLink public portal, all users would be essentially, the same user. This would mean audit trail would only show activity for a combination of all users accessing WebLink through the public portal.

Manually setting up separate read only accounts through some sort of registration process is not desirable. We were wondering if anyone had used software that would facilitate creating an account on the web side and interface to WebLink by automatically creating a read only account. A table would be kept that would correlate the user to the WebLink account. In this way, audit trail could be used if needed to track activity of an individual user.

We understand this is really not the intended use for the public portal but wondered if this has been done by anyone else.

0 0

View 6 previous replies

replied on July 26, 2018

That seems like something you could do with Forms. One thing that's not clear, can anyone create an account or is it some kind of closed list of users?

0 0

replied on July 27, 2018

Anyone could create an account

0 0

replied on July 27, 2018

But you would collect an email address or something? Or this is for analytics? I understand that using a shared account doesn't allow you to attach identities to actions in Audit Trail, but the audit records do have the concept of a connection id which allows you to distinguish between different sessions. Unless you are gathering information about your users and then encouraging/requiring them to re-use their account next time they visit, you can already get that information.

0 0

replied on July 30, 2018

I was not aware of "the concept of a connection id" in audit trail. I will need to take a look at this.

0 0

replied on July 30, 2018

Is "Host Name" shown in the event logging the full computer name or IP address of the computer accessing the WebLink public portal?

0 0

replied on July 30, 2018

No, it refers to the machine where the client application is running, which in this case is WebLink.

0 0

replied on July 30, 2018

Can you point me towards any documentation that supports the statement "but the audit records do have the concept of a connection id which allows you to distinguish between different sessions"

0 0

replied on July 30, 2018

https://www.laserfiche.com/support/webhelp/Laserfiche/10/en-us/administration/Default.htm#../Subsystems/LFAdmin/Content/Audit_Column_Descriptions_Every_Event.htm

0 0

replied on July 31, 2018

It's not called out in the docs there, but I think the session id is a simple in-memory counter which is reset when LFS is restarted. The ids are therefore not universally unique but will not be assigned to multiple sessions at the same time.

1 0

You are not allowed to follow up in this post.

Question

Question

Third Party Auditing for Weblink Public Portal Users

Replies

Sign in to reply to this post.