Audit Logging Configuration setting –
Any evidence (Screenshots or SDD) of the Audit log Configuration from applications (ALIM and PlantSight).
Audit Logging must be enabled for:
Failed/ unauthorized login attempts & Logout logs must be captured for all the users (including privileged/ admin users).
Preferably reports (ALIM and PlantSight) capturing –
Failed Login status, Date and Time, Username, email ID, organization, and Role.
logout date and time, Username, email ID, organization, and Role.
What is the Retention period of Audit Logs. Who have access to view and delete the logs and if there is any log archival or log rotation policy.
Any document or screenshot from the applications (ALIM and PlantSight) showing the Retention period of Audit Logs.
Any document or screenshot from the applications (ALIM and PlantSight) showing the roles to view Retention period of Audit Logs.