主权项 |
1. A computer implemented method for auditing system logs of a remote client device, the computer implemented method comprising:
receiving, by a data processing device, login session information that includes an internet protocol address of a workstation device where a user logged in, a name of the user, a timestamp of the workstation device when the login session information was generated, a first timestamp of the remote client device when the user logged in to the remote client device to perform an activity associated with a work request, a second timestamp of the remote client device when the user logged out of the remote client device, a reason to access the remote client device, and an internet protocol address of the remote client device entered at the workstation device accessing the remote client device via a network to perform the activity to correct a problem on the remote client device associated with the work request, wherein the remote client device is a remote server device that performs an information technology service for customers, and wherein the information technology service is regulated by federal regulations; retrieving, by the data processing device, information associated with the work request to correct the problem on the remote client device that includes a problem ticket identification, a problem ticket status, the name of the user assigned to the problem ticket identification, a description of the problem ticket, and a customer identification associated with the remote client device; generating, by the data processing device, an access token based on the login session information that includes the internet protocol address of the workstation device where the user logged in, the name of the user, the timestamp of the workstation device when the login session information was generated, the first timestamp of the remote client device when the user logged in to the remote client device to perform the activity associated with the work request, the second timestamp of the remote client device when the user logged out of the remote client device, the reason to access the remote client device, and the internet protocol address of the remote client device entered at the workstation device accessing the remote client device to perform the activity to correct the problem on the remote client device associated with the work request and the information associated with the work request to correct the problem on the remote client device that includes the problem ticket identification, the problem ticket status, the name of the user assigned to the problem ticket identification, the description of the problem ticket, and the customer identification associated with the remote client device; comparing, by the data processing device, the access token based on the login session information and the information associated with the work request to correct the problem on the remote client device with an audit log report of the remote client device that includes the activity to correct the problem on the remote client device associated with the work request performed by the workstation device on the remote client device; determining, by the data processing device, whether information in the access token matches information in the audit log report of the remote client device; responsive to determining that the information in the access token matches the information in the audit log report of the remote client device, storing, by the data processing device, an association between the access token and the audit log report of the remote client device demonstrating compliance with the federal regulations; and responsive to determining that the information in the access token does not match the information in the audit log report of the remote client device, sending, by the data processing device, an action alert via a voicemail messaging system to compliance monitoring personnel. |