Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Jira Audit Log - anonymous user

Robert Lee
Robert Lee January 4, 2021

I am new to Atlassian administration of Jira and Confluence.  Over the holiday week a new Jira app, Risk Register, was installed.  When I viewed the Jira Audit Log, the "By" user information indicates "anonymous", please see below:

 

Installed app Risk Register (com.projectbalm.riskregister.riskregister-jira version 1.1.39-AC)anonymousDec 28 2020 12:12:18 AM

How can I get more information?

 

Answer
Watch
Like Be the first to like this
1650 views

5 answers

1 vote
Prince Nyeche
Prince Nyeche
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 4, 2021

Hi @Robert Lee 

Welcome to Community! Ah this is a tricky mystery! Most times, when an Add-on is being installed it fires some event which goes to the lifecycle of the App, in most cases it should return a response and details of the app stored. In rare cases, this occurs and you get an indication of anonymous user. This is problematic to debug, but if you really want to know who installed the App or more info, you can get in touch with Atlassian Support, although they have a time limit on how long such information is kept.

Reply
0 votes
Tara L Conklin
Tara L Conklin July 13, 2021

Afternoon, 

I just discovered the same problem occurring with nearly all of our Confluence Cloud extensions. I attached a screenshot of the audit log and you can see the mysterious 'anonymous' installation is occurring after an attempted automatic update. 

Any ideas why this is happening? Screen Shot 2021-07-13 at 1.52.52 PM.png

View More Comments
Daniel Ebers
Daniel Ebers
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
July 18, 2021

That would not be something I would worry much about. Like you said there was an attemped automatic update, a few second after that the log reads "installed", however by anonymous.

I think the alternative would be to read "installed by an automatic updater" instead of "anonymous".

Like
Reply
0 votes
Craig Schwarze _ProjectBalm_
Craig Schwarze _ProjectBalm_
Marketplace Partner
Marketplace Partners provide apps and integrations available on the Atlassian Marketplace that extend the power of Atlassian products.
January 11, 2021

Hi Robert, I'm from ProjectBalm, the company that makes Risk Register. If you email your query to support@projectbalm.atlassian.net, we can have a look at our backend logs and see if there is any further information.

kind regards,
Craig

Reply
0 votes
Daniel Ebers
Daniel Ebers
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 6, 2021

Hi @Robert Lee

Apart from asking who actually installed the App (referring to what Prince Nyeche already explained very well) there should be a Suggestion on jira.atlassian.com from my point of view to further improve the logging. "Anonymous" looks suspicious and you are not the first user who said "was my password hacked? Who is this "anonymous" user who installed an App"?

I found something but this is probably aiming towards automatic upgrades:
https://jira.atlassian.com/browse/CONFCLOUD-67532

Question left:

  • Is there any chance the App was already present in your instance and this was "just" an upgrade?
  • Can you get on hold of all your admins asking if they erolled "Risk Register"?
    • ==> If nobody tells that he was it then it is a great mystery.

Regards,
Daniel

Reply
0 votes
Matt Doar
Matt Doar
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
January 4, 2021

There is also an audit log on the Manage Apps page itself that might show more info

View More Comments
Matt Doar
Matt Doar
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
January 4, 2021

Or ask all your Jira admins

Like
Robert Lee
Robert Lee January 4, 2021

Thanks that is all the information that can be gleaned from the Audit Log.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
PREMIUM
PERMISSIONS LEVEL
Site Admin
TAGS
AUG Leaders

Atlassian Community Events

    See all events