User activity log overview

Logging user activity

The NFM-P user activity log allows an operator to view information about the actions performed by each NFM-P GUI and OSS user.

Note: An NFM-P operator with an Administrator scope of command role can view all user activity log records except records associated with LI management. Viewing LI management records requires the Lawful Intercept Management role.

You can use the User Activity form to do the following:

• List and view information about recent user activities.

• List and view information about recent user sessions and the actions performed during each session.

• Navigate directly to the object of a user action.

• View NFM-P client session information that includes connection, disconnection, and authentication failure events.

• View NFM-P server session information, that includes startup, shutdown, and access violation events.

Note: The NFM-P also raises an alarm for a security-related event such as an authentication failure or access violation.

You can navigate directly from an object properties form to a filtered list of the activities associated with the object. See the NSP NFM-P Classic Management User Guide for more information about the user activity log and using the User Activity form.

Note: The User Activity form and related list forms do not refresh dynamically. To view the latest log entries in a list form, you must click Search.

Each log entry has a request ID. There can be multiple log entries associated with a single request ID. For example, the creation of a discovery rule that has multiple rule elements creates one log entry for each rule element. You can use the request ID to sort and correlate the multiple log entries associated with a single client operation.