Logging https logins?
March 27, 2009 9:37 AM   Subscribe

Logging username logins on our web server?

Our current student information system (hosted on site) does not natively log user logins for administrators to see. However, we would like to do so for various reasons.
Through logging IIS (MS Server 2003) activity or some other hackery, is there any way to do so? The log on page is done over https.

We're not looking to log actual activity- only that person x logged on at time z.
posted by jmd82 to Computers & Internet (4 answers total)
 
Response by poster: Oh, and in IIS under the website, I got to properties and have had "Enable Logging" checked. Stuff is logged...but no usernames, even though the option is enabled under advanced for the W3C Extended option.
posted by jmd82 at 10:05 AM on March 27, 2009


This is probably something you'd need to talk to your information system vendor about. Windows can track logins that are authenticated against Windows, but not against some other authentication DB.
posted by devilsbrigade at 10:12 AM on March 27, 2009


Response by poster: Ah, I see. I've already tried working with our vendor, but since they don't support the function, any extra help is "beyond the scope of the service agreement."
If it makes any difference, the software runs off MSSQL, though I never work directly with SQL.
posted by jmd82 at 10:18 AM on March 27, 2009


What's the software written in? It may be possible to pretty easily write in a logging function. You can also check through the database to see if it does logging, or if it stores temporary session data (which you could harvest periodically to get logins).
posted by devilsbrigade at 11:34 AM on March 27, 2009


« Older Can you explain how Geitner's latest is supposed...   |   Help me get my VOIP on! Newer »
This thread is closed to new comments.


Tags

Share