Unknown Login Entries in CloudSOC History for User fHc7JH4yj79efrQ839rnlX80HJqw2JaqUI8k71bj
search cancel

Unknown Login Entries in CloudSOC History for User fHc7JH4yj79efrQ839rnlX80HJqw2JaqUI8k71bj

book

Article ID: 223823

calendar_today

Updated On:

Products

CASB Security Premium

Issue/Introduction

CloudSOC history reports user fHc7JH4yj79efrQ839rnlX80HJqw2JaqUI8k71bj logged in.
 
Is user fHc7JH4yj79efrQ839rnlX80HJqw2JaqUI8k71bj a security concern?

Resolution

User fHc7JH4yj79efrQ839rnlX80HJqw2JaqUI8k71bj is a CloudSOC system account that makes reporting calls.

An enhancement has been requested to give a better description of the event such as "System Report".  It is not a user that can be impersonated and it does not produce a security risk.

Additional Information

The impersonate user verbiage records the CloudSOC sysadmin that configured the report or compiled the data.

 

 

Powered by Wolken Software