Shireburn

Logging and monitoring in an application means that every action, login, and data input is recorded and able to be audited. The failure to comprehensively log and monitor every action in an application is “the bedrock of nearly every major incident,” according to <a href="https://owasp.org/www-project-top-ten/OWASP_Top_Ten_2017/Top_10-2017_A10-Insufficient_Logging%252526Monitoring" target="_blank" rel="nofollow noopener noreferrer">OWASP</a> documentation. An unlogged or unmonitored event is considered to be a breach in your system. When breaches go unnoticed, serious damage to data can be inflicted.

Indigo audits all database events. Every successful an unsuccessful login, visited URL, and all records and their creation and modification dates and creator and modifier are audited using <a href="https://docs.microsoft.com/azure/sql-database/sql-database-auditing-get-started" target="_blank" rel="nofollow noopener noreferrer">auditing for SQL databases</a> and <a href="https://msdn.microsoft.com/library/cc280386.aspx" target="_blank" rel="nofollow noopener noreferrer">SQL server audits</a>.

How to catch unwanted events in your Indigo system:

You can review your own system’s <a href="https://indigohelp.shireburn.com/en/articles/867371-audit-log" target="_blank" rel="nofollow noopener noreferrer">audit log</a> by going to Administration &gt; Audit Log in Indigo. We recommend that you routinely review your system’s audit log to ensure that there are no surprises.

Have multiple pairs of trusted eyes monitor audit logs. <a href="https://indigohelp.shireburn.com/en/articles/3585311-generating-and-printing-an-audit-log-report" target="_blank" rel="nofollow noopener noreferrer">Generate and print audit log reports</a> for you and your team to review.

- You can review your own system’s <a href="https://indigohelp.shireburn.com/en/articles/867371-audit-log" target="_blank" rel="nofollow noopener noreferrer">audit log</a> by going to Administration &gt; Audit Log in Indigo. We recommend that you routinely review your system’s audit log to ensure that there are no surprises.
- Have multiple pairs of trusted eyes monitor audit logs. <a href="https://indigohelp.shireburn.com/en/articles/3585311-generating-and-printing-an-audit-log-report" target="_blank" rel="nofollow noopener noreferrer">Generate and print audit log reports</a> for you and your team to review.