Symptom
You found role collections created on BTP were deleted. But the auditlog-viewer service log does not show details about who (or from which IP address) deleted it, just shows about user Client ID.
-----------------------------
"message": {
"uuid": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxx",
"user": "client/sb-na-xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxxxxxxx",
"time": "2023-10-05Txx:xx:xx",
...
"success": true,
"object": {
"type": "xs_rolecollection2user",
"id": {
"tableName": "xs_rolecollection2user",
"crudType": "DELETE",
"creationTimestamp": "2023-10-05Txx:xx:xx",
"user_id": "xxx",
"rolecollection_identity_zone_id": "xxx
"rolecollection_name": "xxx"
-----------------------------
Read more...
Environment
- SAP Business Technology Platform Cloud Foundry - BTP CF
Product
Keywords
technical client created by the XSUAA apiaccess plan, role collection, delete, who deleted the role collection, subaccount addmin, get a token and call the respective APIs, client ID , KBA , BC-CP-CF-SEC-IAM , UAA, Authentication, Authorization, Trust Mgmnt , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.