How to add a table to the sys_audit

Wim2
Kilo Expert

Hi,

I want to add a table to the sys_audit table, so we can follow users performing actions on that table.
In this KB

Procedure
1. Log in as administrator
2. Navigate to System Definition > Dictionary
3. Find the record of the table whose type is 'Collection'
4. Tick the Audit field of this record
5. Select the Advanced view
6. Enter 'audit_type=whitelist' in the Attributes field
7. Save
8. Find the record of the specific field of the table
9. Select the Advanced view
10. Enter 'audit=true' in the Attributes field
11. Save

My Questions are:
1) Why do I have to add 'audit_type=whitelist' to the Attributes field?
2) Why do I also have to add 'audit=true' in the Attributes field? Dous this not have to be Set the value of the Audit field to 'true'
3) Wat other values needs to be set in the 'Attributes' field?
4) I also see values like 'no_labels=true' , 'update_synch=true'
5) there are also records with 'Audit=true' and 'Attribute=NULL'. I am confused. When do I need te set
* Audit=true
* Attribute={value}

Thank You
Wim

1 ACCEPTED SOLUTION

Saurav11
Kilo Patron
Kilo Patron

Hello,

Not sure where you got the info from but the first 4 points are all you need to do

Please find the official steps from Servicenow

  1. Navigate to System Definition > Dictionary.
    The system displays the list of dictionary entries. The list includes a row for each table as well as a row for each column (field) in the table.
  2. In the list of dictionary entries, find the row corresponding to the table you want to audit, for example cmdb_ci_computer. You can distinguish the row for the table itself – versus a row for a column in the table – by finding the row with the correct table name, an empty entry for Column name, and a Type of Collection.
  3. Select the dictionary entry for the table.
    The system displays the dictionary entry form.
  4. Check the Audit check box.
  5. Click Update.

Below is the link to the official document:-

https://docs.servicenow.com/bundle/rome-platform-administration/page/administer/security/task/t_EnableAuditingForATable.html

 

Please mark answer correct/helpful based on Impact

View solution in original post

1 REPLY 1

Saurav11
Kilo Patron
Kilo Patron

Hello,

Not sure where you got the info from but the first 4 points are all you need to do

Please find the official steps from Servicenow

  1. Navigate to System Definition > Dictionary.
    The system displays the list of dictionary entries. The list includes a row for each table as well as a row for each column (field) in the table.
  2. In the list of dictionary entries, find the row corresponding to the table you want to audit, for example cmdb_ci_computer. You can distinguish the row for the table itself – versus a row for a column in the table – by finding the row with the correct table name, an empty entry for Column name, and a Type of Collection.
  3. Select the dictionary entry for the table.
    The system displays the dictionary entry form.
  4. Check the Audit check box.
  5. Click Update.

Below is the link to the official document:-

https://docs.servicenow.com/bundle/rome-platform-administration/page/administer/security/task/t_EnableAuditingForATable.html

 

Please mark answer correct/helpful based on Impact