Security Log

Overview

The Security Log tracks key security events, such as changes in access location, unauthorized attempts to access resources, and any automatic actions taken by the system in response to these events. Each security event is logged with specific details, including the user's name, the date and time of the event, the platform, and the IP address from which the event was triggered.

By default, the security log displays the most recent security events for your domain.

Key Fields in the Security Log

• Name: Name of the user who triggered the security event.

• IP Address: The IP address of the system from which the event was initiated.

• Platform: The platform where the security event occurred (web, iOS, Android, Windows, etc.).

• Event: A description of the security event.

• Time of Event: The exact date and time the security event took place.

• Action Taken: The action taken by the system in response to the security event.

• Time of Action: When the system's action in response to the event was executed.

• Email Notification: Email IDs of the network admins who were notified of the security event.

List of Possible Security Events

Some examples of security events logged in MangoApps are:

• A user logs in from a different geographic location than previously recorded.

• A user attempts to access flagged content.

• Multiple failed password attempts by a user.

• Unauthorized access to a resource or page.

• Unauthorized attempts to access an invalid URL.

• Unauthorized attempts to access the Admin Portal.

• Access attempts from an IP address outside the configured range.

Searching the Security Log

You can search for specific security log entries using a variety of search filters.

Steps:

1. Enter the user name in the User Name search box (optional).

2. Enter the user's email ID or login ID in the Email ID/Login ID search box (optional).

3. Select a platform from the Platform drop-down list to filter security events by platform (e.g., Web).

4. Use the Event Occurred Between date picker to define the time period for your search.

5. Click the Search button to retrieve the results.

6. Optionally, export the filtered results to a .csv or .pdf file.

Exporting the Security Log

To export the security log:

1. Navigate to Admin Portal > Home > Logs > Security Log.

2. Use the Items per page drop-down to display up to 1000 entries.

3. Click Export CSV or Export PDF to download the log file.

Retention Policy

MangoApps retains Security Log entries from the date of domain creation, and these logs are never deleted. Network admins can access them at any time.

FAQs

When does the security log register a login?

The security log registers a login only if there is an attempt by a user who is not authorized.

Can I choose which security event triggers an email notification to the network admin?

Yes, you can configure email notifications for specific security breach events under Admin Portal > Notifications > Security Notifications. Some events that can trigger notifications include:

• Login from a different geographic location.

• Multiple incorrect password attempts.

• Unauthorized access attempts to resources, pages, or the Admin Portal.

• Attempts from an IP address outside the allowed range.