Event log and security debug

Event log

The Event log application is a place in the administration interface where the system records events and activities. From a security point of view, the events logged into the event log are mainly:

  • Authentication attempts – both successful and failed
  • All bad requests – which includes attempts of SQL injections and other hacking efforts

You can find more information about event log settings in Working with the system event log.

Security debug

The security debug is a part of the debugging interface in Kentico. It allows you to view user security checks performed by the system. Information stored in this section includes:

  • IsGlobalAdministrator, IsEditor, IsInRole, IsInSite, IsCultureAllowed checks
  • URL hash validation
  • redirects to the AccessDenied page – for missing permissions and UI element access

You can find the security debug interface in the Debug application on the Security tab.

Security debug

Enabling the security debug functionality

If you cannot see the security page, you have to enable the security debug first in Settings -> System -> Debug by selecting the option Enable security debug.