EMu provides auditing of all user and administration activity. The list of operations to audit is configurable and ranges from record operations such as inserting, editing, deleting, querying and viewing to system activities such as logins, database closures and maintenance. All auditing information includes the date, time, username, operation type, record type and key number for all database actions.
The audit trail functionality maintains a complete history of changes to a record.
An audit trail record is generated for all operations registered for monitoring. There are five levels for which audit records may be generated:
- change (insertions, updates, deletions)
- search (queries)
- display (viewed, sorted, reported)
- login (first access of a module in current session)
- all (all database operations)
Each of these may be set on a per module basis, which means that it is possible to monitor all changes to records in the Parties module, for instance, while Multimedia records may be audited for changes, searches and records viewed.
Note: Every EMu module contains an Audit tab that lists all audit trail records for the current record. Each record details the operation performed, who performed it and the date on which it was performed. From this tab it is also possible to view the complete audit trail record in the Audit Trails module.
Reports are provided that allow Administrators to produce audit listings detailing changes made on a per user basis, within specified time constraints.
Audit records are:
- Read-only (even to System Administrators), ensuring that they are not tampered with.
- Generated at the database level to ensure non-repudiation of the data they contain.
- Only accessible to appropriately privileged personnel.
Record Recall is an extension of the audit trail functionality, enabling authorised users to roll back a record to an earlier version.
Note: Details about Record Recall can be found here.
The audit facility also provides an archiver that allows all audit records to be saved in a file on a daily basis for archival purposes or for use as raw data to load into another system.
Note: Details about configuring the audit facilities can be found in Auditing.