This page describes the logs generated when you change the following settings in "System Administration" in Administration.

• Login Security
• Audit Logs
• System mail account
• Misc Settings

For an overview of items included in the audit logs, such as level, module, and result, refer to the following page:
Viewing Audit Logs

This section describes the audit logs whose level is "Notice".

Audit logs whose module is "System Administration" are shown below.

Changed audit log settings.

Audit log retention periods.

Changed "Misc Settings".

The following items and their statuses are logged.

• Embedding into External Sites
• Public URL Generation
• Referrer-Policy
• Webhook

The status is one of the following:

• If you enabled the setting: enable
• If you disabled the setting: disable

Changed "Login Security".

The changed settings.
For details, refer to the following section:
Properties for "configure security settings"

Downloaded audit log.

Name of the downloaded file.

This section describes the audit logs whose level is "Information".

Audit logs whose module is "System Administration" are shown below.

Changed system email address or settings of the email server.

The changed setting values.

Changed header logo image or URL of the hyperlink destination of the logo.

The specified URL is logged if the URL of the hyperlink destination of the logo is configured.

If you change the setting in "Login Security", the audit log details will look like as follows:

The "Complement" field will show the following properties.

The value configured for "Use autocomplete to fill in login name".

• If enabled: true
• If disabled: false

The value configured for "Save Login Name & Password".

• If enabled: true
• If disabled: false

The value configured for "Automatic Login".

• If enabled: The valid duration is logged. The value is expressed in seconds.
• If disabled: false

The value configured for "Force users to change their passwords on their next login".

• If enabled: true
• If disabled: false

It shows the password policy setting.

• min. length: Minimum number of characters for the user password
• min. length[admin]: Minimum number of characters for the administrator password
• history size: Password Reuse Limit
• complexity: Password complexity
• joe password: Allow users to use login name as password
• expire time: Password expiration period
• password reset: Allow users to reset their passwords
• mutable: Allow users to change their password

It shows "password is immutable".
It does not show "password policy".

The value configured for "Number of Failed Attempts Before Account Lockout".
It shows "0" if "Never lockout" is selected.

The value configured for "Account Lockout Duration (how long locked out accounts remain locked out)".
It shows "FOREVER" if "Never unlock" is selected.

The lifetime of a login session. The value is expressed in seconds.

It shows "enabled" as a value configured. The following setting items are also shown along with it.

• require saml authentication:
  Require SAML authentication
• saml login url:
  SSO endpoint URL for Identity Provider (IdP)
• saml logout url:
  URL redirected to, after logout from cybozu.cn
• set new saml certificate:
  It shows "true" if a public key certificate used for signature by IdP is registered.

It shows "disabled" as a value configured.

The value configured for "Authentication when using API".

• If enabled: true
• If disabled: false

The message configured for "Additional Message on Login Failure".
If the error message is not configured, the message part (example: ja=message) appears empty.

• ja: Japanese
• en: English
• zh: Chinese (Simplified)
• zh-TW: Chinese (Traditional)
• es: Spanish

The value configured for "Allow users to use two-factor authentication".

• If enabled: true
• If disabled: false

The value configured for "Require two-factor authentication".

• If enabled: true
• If disabled: false