CA API GatewayAPI SECURITYCA API Gateway Precision API Monitoring Module for API Gateway (Layer 7)CA API Gateway Enterprise Service Manager (Layer 7)STARTER PACK-7CA Microgateway
Issue/Introduction
How can password changes be tracked for policy manager internal IDP users?
Environment
Release : 9.4
Component : API GATEWAY
Resolution
Password changes are tracked via system audit messages. In the audit viewer you will find an event similar to the below:
Node : <NODE> Time : 20200319 12:54:05.939 Severity : INFO Message : InternalUser #aebda644cc55356754006057e3fc4098 (test) updated (changed hashedPassword, changed changePassword) Audit Record ID : aebda644cc55356754006057e3fc41f6
Event Type : Manager Action Admin User Name : unknownClientSubject Admin User ID : principal:unknownClientSubject Identity Provider ID: 0000000000000000ffffffffffffffff Admin IP : 10.230.10.18
Action : Object Changed Entity Name : test Entity ID : aebda644cc55356754006057e3fc4098 Entity Type : identity.internal.InternalUser
If the change was made as the result of the current password expiring (per your password policy) this is tracked in the database in the password_history table. This only applies to password changes due to expiration.