All Apps and Add-ons

Is there a field in Workday logs that store username information in Workday Add-on for Splunk?

Explorer

Hello,

We have onboarded Workday logs and in the user activity input section, checked "Include target details". Now the question is would it be possible to view username who has performed some action on Windows systems? Is there a field for that?

Please suggest.

0 Karma

Explorer

The user_activity sourcetype contains a field called systemAccount (also aliased to user) which contains a unique identifier for the user that performed the action. Depending on the tenant setup this value can be a username or id number.

0 Karma

Champion

Is there any field called systemAccount or user?

0 Karma

Motivator

Access the Edit Tenant Setup - System task and ensure that the Enable User Activity Logging checkbox is selected.
- You can able to search for user activity
Access the Edit Tenant Setup - Security task and ensure that the OAuth 2.0 Clients Enabled checkbox is selected.

0 Karma
Don’t Miss Global Splunk
User Groups Week!

Free LIVE events worldwide 2/8-2/12
Connect, learn, and collect rad prizes
and swag!