Access Control Admin Operation Log Review – HENNGE One Help Center

Target

Administrators who perform initial settings and operational management of Access Control

Purpose

Check the admin operation logs in the Access Control Administration.

Notes

This article is based on the product specifications as of March 2025 and may change without notice.
Global administrator privileges for Access Control are required to verify the actual screen or change settings.
Please refer to the following article for how to access the Administration.
How to access the HENNGE Access Control Administration
The admin operation logs also record logs when using the Access Control API.
This article does not describe logs specific to the use of the Access Control API. For details on the Access Control API, please refer to the following.
What is the HENNGE Access Control API

Procedure

1. Access the [Log Management] - [Admin Operation Logs] from the left menu in the Access Control Administration.

2. Specify the date and time and search. Specify other conditions as needed and search.

The conditions that can be specified are as follows.

・Operation : Specify what kind of operation was performed by the administrator. The selectable operations are as follows.

・Actor : The username of the administrator who performed the operation is displayed.

・IP address : Specify the source IP address for the administrator's operation.

Click here for the list of operations (Click to expand) +

Name	Description
Update Domain Settings Configuration	Change settings in [Domain Settings]
Enable Microsoft Synchronization	Execute connection with Microsoft Entra ID
Enable Microsoft Secure Browser Unread Checker	Connect and enable settings with [Microsoft Entra tenant IDs for push notification] in [Domain Settings]
Create Connected Service	Add Service in [Connected Services]
Update Connected Service	Change settings of the target service in [Connected Services]
Delete Connected Service	Delete the target service in [Connected Services]
Prepare Connected Service Key Rotation	Click [Rotate key] for [Signing Key] from the settings screen of the target service in [Connected Services]
Finalize Connected Service Key Rotation	Click the [OK] button on the [Rotate key] screen for [Signing Key]
Run Microsoft Synchronization	Synchronize user information with Microsoft Entra ID
Run Dry run Synchronization	Preview synchronization of user information with Microsoft Entra ID
Create Periodical Synchronization Setting	Start periodic synchronization with Microsoft Entra ID
Delete Periodical Synchronization Setting	Stop periodic synchronization with Microsoft Entra ID
Get Provisioning Settings Token	Access the [Provisioning Settings] settings screen
Update Provisioning Settings Solution	Change settings of [Google Provisioning]
Delete Provisioning Settings Solution	Delete settings of [Google Provisioning]
Create API Client	Execute [Add Client] in [API Clients] - [HAC API]
Update API Client	Change settings of the target API in [API Clients] - [HAC API]
Delete API Client	Delete the target API in [API Clients] - [HAC API]
Create Directory Sync Client	Execute [Add Client] in [API Clients] - [Directory Sync API]
Delete Directory Sync Client	Delete the target API in [API Clients] - [Directory Sync API]
Update Directory Sync Client	Update the target API on the HENNGE Directory Sync Tool side
Create User	Execute [Add] in [Users]
Create User Batch	Execute [Batch Operations] in [Users]
Update User	Change settings of the target user in [Users]
Delete User	Delete the target user in [Users]
Download Users	Download the user list in [Users]
Force Logout User	Execute [Force logout] for the user in [Users]
New User Smartphone Otp	Click [Register] for [OTP type] of the target user in [Users]
Confirm New User Smartphone Otp	Execute registration of [HENNGE Lock] from OTP registration
New User Email Otp	Click [Email] from OTP registration
Confirm New User Email Otp	Select [Email] and execute registration from OTP registration
Create Access Policy Group	Create an access policy group in [Access Policy Groups]
Update Access Policy Group	Change settings of the target access policy group in [Access Policy Groups]
Delete Access Policy Group	Delete the target access policy group in [Access Policy Groups]
Create Access Policy Template or IP Set	Create an access policy template in [Access Policy Templates]
Update Access Policy Template or IP Set	Change the target access policy template in [Access Policy Templates]
Delete Access Policy Template or IP Set	Delete the target access policy template in [Access Policy Templates]
Add Custom User Attribute	Execute [Add new attribute row] in [Custom User Attributes]
Rename Custom User Attribute	Change the display name of the target ID in [Custom User Attributes]
Delete Custom User Attribute	Delete the target ID in [Custom User Attributes]
Create Secure Browser Request	Execute [Add Device] in [Devices]
Update Secure Browser	Change settings of the target device in [Devices]
Delete Secure Browser	Delete the target device in [Devices]
Download Secure Browsers	Execute [Download (CSV)] in [Devices]
Create Browser Policy Group	Execute [Add Browser Policy Group] in [Browser Policy Groups]
Update Browser Policy Group	Change settings of the target browser policy group in [Browser Policy Groups]
Delete Browser Policy Group	Delete the target browser policy group in [Browser Policy Groups]
Download Device Certificate	Execute [Request Export] in [Certificates]
Update Device Certificate	Change settings of the target device certificate in [Certificates]
Resend Device Certificate Emails	Execute [Send installation email] for the target device certificate in [Certificates]
Download Admin Operation Logs	Execute [Download] in [Admin Operation Logs]
Download Access Logs	Execute [Download (CSV)] in [Access Logs]
Download User Operation Logs	Execute [Download (CSV)] in [User Operation Logs]
Add Sync Log	Log added to [Sync Logs] after sync is complete
Accept Secure Browser Request	Approve the target request in [Pending Requests]
Deny Secure Browser Request	Deny the target request in [Pending Requests]
Create Certificate Request	Execute [Register Certificates] in [Certificates]
Create Certificate Renewal	Execute [Renew Certificates] in [Certificates]
Revoke Certificates	Execute [Revoke Certificates] in [Certificates]
Set Manual Expiration on Certificates	Execute [Set as Expiring] in [Certificates]
Prepare Certificate Export	Download the target device certificate in [Action Results]

3. If necessary, download the operation log.

Items (Administration)

The items that can be checked in the operation log are as follows:

Name	Description
Date (ASIA / TOKYO)	The date the operation was performed
Operation	Specific operation details
Actor	The username of the administrator who performed the operation
Status	The result of the operation
IP address	The source IP address of the actor (IPv4 or IPv6)
Device Information	Device information of the actor's access source

Items (Download)

The items displayed in the downloaded file are as follows:

Name	Description
Timestamp	The date the operation was performed
Actor	The username of the administrator who performed the operation
View Type	The type of administration view where the operation was performed modern: Displayed when operated in modern view classic: Displayed when operated in classic view
IP address	The source IP address of the actor (IPv4 or IPv6)
Status	The status code of the target operation
Operation ID	Specific operation details
User Agent	Device information of the actor's access source