Solved

Is there a way to findout when (date) was the login account locked?

Posted on 2004-08-15
4
264 Views
Last Modified: 2008-03-10
Greeting DB Expert.

I have came to a dead end looking for some answer or some idea.
Currently, I am working on a project to clean up locked login account in the sybase DB who was locked for more than a month.
However, the sp_displaylogin nor "system table" does not shows me the status of when (date) the account was locked or by who (if possible). It seems like that there is an audit function to log all the "sso" or "sa" role's command text but that will be too much of information in the audit log to go over just to look for the information when the lock event was performed.

Your feedback will be a greet help
Thank in forward
soy
0
Comment
Question by:soykawasaki
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 14

Expert Comment

by:Jan_Franek
ID: 11809568
AFAIK, this information is not stored. So, you can either try to dig it out of audit data, or modify sp_locklogin procedure to store additional info about locks/unlocks of logins (probably into some table). If you choose second way, remember to add your modification into this procedure after each application of EBF.
0
 
LVL 6

Expert Comment

by:ChrisKing
ID: 11810575
suggest you could try something like a daily BCP out of the syslogins table, and then diff the file with the previous file.

you could then just grep the diff files for the username.

its a bit clunky, but if you are used to unix, then you should find fast and simple to deal with
0
 

Author Comment

by:soykawasaki
ID: 11816536
Is there better way if the type of the role which is performing lock event is sso role only?
We got more than 100 sybase servers and planing for the best way to get this secuirty issue working.
Or the sybase just does not have that kind of secuirty feature?
0
 

Accepted Solution

by:
grantq earned 100 total points
ID: 11961049
ASE Audit is supporting, but this needs CPU and disk space, and depending on the extent of your auditing this can be expensive.
Versioning master..syslogins is not difficult with an add-on solution, but it requires rework whenever the table changes.
An adequate solution may be that when the account is to be locked, as sso, you would pre-change the password to an arbitrary value and that will update the pwdate in master..syslogins. You can then use this as your point of reference.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Check out this step-by-step guide for asking an anonymous question on Experts Exchange.
We asked our MSP customer base what their favorite tools were and how they help them serve clients. We focused our questions on favorite tools in the following categories: >PSA tools >RMM tools >Alert management tools >Communication tools and Mo…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial

759 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question