Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
jbindra
Staff
Staff

Created on ‎10-29-2024 06:21 AM

Article Id 352714

Technical Tip: How to review user creation logs to determine who created it

Description This article describes where to find logs for the creation of a local user and determine who created the user.
Scope FortiGate.
Solution

Information and details can be collected for User creation by reviewing the log located under System events.
This will allow an administrator to know who created the user including the time and date.

 

In the given example, a local test user is created by navigating to:

 

User & Authentication -> User definition -> Create new -> Local user -> provide username and password -> Next -> Submit.

 

local user.PNG

 

To check the logs related to that, navigate to Logs & Report -> System Events.

 

log created.PNG

 

This log can be further expanded to see more details:

 

final log.PNG

 

If there are multiple logs, an appropriate log filter can be applied to see the user creation logs:

 

Under the Log Description column, filter for 'Local user added'.

 

filter.PNG

 
153
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.