Server Rm Log even necessary?

I would like to ask the experts why they think a server room log is important aside from the reason that they have to comply with industry compliance like ITIL, ISO or SOX. Is the server room log even necessary if you have video surveillance/motion capture (stored up to 45 days) and FOB key access limited to authorized personnel? And it would be great too if you have some real life experience to share on how the server room log was beneficial? Was there any reason that anyone had to go back to the server room log to check who was in there longer than 45 days? Thank you all.
hgonzaloAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

nemws1Database AdministratorCommented:
We got rid of our log when we got FOB key access set up.  The FOB log is imported into a database daily and stored forever (it's just text data, so it's not like its a lot of data).
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
hgonzaloAuthor Commented:
so there is no need or interest in tracking vendor access to the premises and the type of work they do in the server room? I am assuming that the fob key database only logs employee information.
0
nemws1Database AdministratorCommented:
We don't allow unescorted vendor access to our premises, so I'm not sure its an issue for us.

What are your worries/fears?  Do you allow unescorted vendor access to your server space?  If so, and you are worried that they are going to do something malicious, a log certainly isn't going to make a difference.

Or are are you looking more for a log of server changes?  Where I'm working now we have to follow SOX compliancy, so every change to production hosts is checked/passed by management and stored in a Sharepoint repository.  At my previous job, they just used a simple web form (with a db backend) to record/log changes that worked very well for them.  Just need to make it a condition of access to your space that any changes made are recorded/reported, but I would still use bits for that instead of paper.
0
ON-DEMAND: 10 Easy Ways to Lose a Password

Learn about the methods that hackers use to lift real, working credentials from even the most security-savvy employees in this on-demand webinar. We cover the importance of multi-factor authentication and how these solutions can better protect your business!

hgonzaloAuthor Commented:
yeah we do both escorted and unescorted. We are small in terms of staff so we cant escort the vendor all day if they need to be in the server room for extended period of time. Plus our server room also houses our facilities security/fire/alarm equipment and they have people go in to the server room working on non-server room related matters. I think the server room log also gives us visibility/detail on the type of work being done inside the server room such as how often equipment's are being worked on or pm'ed that could be indicators that some things need more attention.
0
nemws1Database AdministratorCommented:
Sound like you might need a cage or some other partition to better regulate who has access to what in your room.  But it also sounds like that might be cost prohibitive if you have a small operation.  I would think continuing to use a log would be fine for you.  However, I would still prefer a an old laptop running a web browser with a big sign saying "SERVER ROOM LOG" above it that just goes to a simple web form.
0
hgonzaloAuthor Commented:
Thanks for your input.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.