Elevated Accounts in GPS
We have an account that is an elevated account with very limited access.
Today that password is protected and we maintain a manual log to track use, tickets and approvals (Excel spreadsheet).
We do that because Oracle does not keep the history of sign in and offs (not more than 7 days - and if we need that, we need to run a REST API and so forth) and does not provide any other method to manage approvals, etc.
Brainstorming some ideas on how to improve the management/oversight of this account:
Are there are any other processes in place today managing elevated accounts that we may want to consider adopting to a) improve on the approval tracking, b) produce a system generated log / report of use, or c) enhance the traceability and compliance reporting on this account?