Group / / Role / Permission Addition & Removal Audit Trail

Currently SAML is enabled and admin roles are granted to users via groups. Is there a way to determine:

  • When the user is added to the group? 
  • When the permissions are added to the user?

Thank you.

0 3 290
3 REPLIES 3

leobardor
Participant V

Hi Kaliew!

I would like to share one  URL “explore” of the looker system activity feature I think it can help:

https://yourlookerinstanceURL.looker.com/explore/system__activity/user?fields=user.id,user.name,user...

For instance:

308f6797-0cfd-4535-a8b5-a48631635f79.png

Hope it helps!

Best,

Leo

Hi @leobardor

First, thank you. I wasn’t expecting anyone to answer.

Follow-up: This only shows the last change. Are we able to see the history for a specific role or all the roles associated to the user?

leobardor
Participant V

Hi @leobardor

First, thank you. I wasn’t expecting anyone to answer.

Follow-up: This only shows the last change. Are we able to see the history for a specific role or all the roles associated to the user?

Hi Kaliew

As far I know, there is no history of this kind of actions.

Are you using the “mirror groups” SAML feature?

https://docs.looker.com/admin-options/security/saml-auth#:~:text=Mirroring%20SAML%20groups%20lets%20....

45a2132e-9aba-4fdd-8cbe-cde58719b741.png

If so, perhaps you will be able to get this information outside looker.

Hope it helps!

Best,

Leo