Audit Event Enhancement for 2FA Events

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Work on this issue
• Close this issue

Proposal

When the following event occurs, we're asking for streaming audit event to log the payload schema defined here:

• User 2FA Enabled
• User 2FA Updated
• User 2FA Auth Request
• User 2FA Recovery Started
• User 2FA Recovery Success
• User 2FA Recovery Failure

In addition we need the following metadata added to the details field of the payload:

• For User 2FA Enabled & User 2FA Updated add the auth method
• For User 2FA Recovery Started add the recovery method
• For User 2FA Recovery Failure add the failure reason

Streaming-only event or normal event?

We are requesting for these logs to be streaming-only logs.

Level

Audit event should be captured at both Instance and Group level