Identify when a staff user last logged in to Sierra
Provide data for tracking Sierra users (library staff). For example, log sign on and sign out dates and times. Perhaps add a "Last signed in" date field to the user record. Other data points might also be worthy of recording, such as types of records accessed.
Idea Value
Given that libraries handle possibly sensitive personal data, system users who have access to such data should be trackable. Currently, it's not even possible to find when the last time a user has signed on to the system.
Robert McHugh
shared this idea
In accordance with the Idea Graduation Workflow guidelines agreed upon by Innovative and IUG, this idea has been closed because it was submitted more than two years ago and has not been selected for inclusion in the product.
This idea is still available for commenting but is no longer eligible for voting.
Ideas that were submitted three or more years ago are archived for future reference.
-
Greg Smith
commented
Agreed. This is just part of the overall lack of adequate audit trail in Sierra, which urgently needs to be addressed.
-
Phil Shirley
commented
Having a log of when accounts were used, or at least a last login date, would be useful in identifying inappropriate use of accounts. We might also want to have the IP address the login came from.
-
Chris Jones
commented
As a system administrator, we would like to be able to run an sql query or api query to identify when a Sierra user last logged in to their account.
We would use this audit information to meet security requirements of disabling accounts that have not been logged in to for x number of days and to remove them after x number of days.
-
Sheryl VanderWagen
commented
This is important for a number of reasons already mentioned and even more important when managing hundreds of system logins, we'd like to be able to contact our libraries to let them know if a login hasn't been used in a long time and it would help us assist our members with information regarding dates and times of system access.
-
Phil Shirley
commented
Yes, useful in identifying logins that are no longer used, and it's important to have some accountability for logins, including being able to identify patterns that indicate that something fishy might be going on (logins in the middle of the night, etc.). This is important for ensuring the security of our credentials, and the privacy of our patron data.
-
Fran Juergensmeyer
commented
This would also be helpful for identifying users who are no longer with the organization. Sometimes, removing Sierra logins doesn't get done when a person leaves the library. Being able to see when someone last logged in would help identify accounts that need to be deleted.