Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Jira Audit Log - anonymous user

Robert Lee
Robert Lee
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 4, 2021

I am new to Atlassian administration of Jira and Confluence.  Over the holiday week a new Jira app, Risk Register, was installed.  When I viewed the Jira Audit Log, the "By" user information indicates "anonymous", please see below:

 

Installed app Risk Register (com.projectbalm.riskregister.riskregister-jira version 1.1.39-AC)anonymousDec 28 2020 12:12:18 AM

How can I get more information?

 

Answer
Watch
Like Be the first to like this
2215 views

5 answers

1 vote
Prince Nyeche
Prince Nyeche
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 4, 2021

Hi @Robert Lee 

Welcome to Community! Ah this is a tricky mystery! Most times, when an Add-on is being installed it fires some event which goes to the lifecycle of the App, in most cases it should return a response and details of the app stored. In rare cases, this occurs and you get an indication of anonymous user. This is problematic to debug, but if you really want to know who installed the App or more info, you can get in touch with Atlassian Support, although they have a time limit on how long such information is kept.

Reply
0 votes
Tara L Conklin
Tara L Conklin
Contributor
July 13, 2021

Afternoon, 

I just discovered the same problem occurring with nearly all of our Confluence Cloud extensions. I attached a screenshot of the audit log and you can see the mysterious 'anonymous' installation is occurring after an attempted automatic update. 

Any ideas why this is happening? Screen Shot 2021-07-13 at 1.52.52 PM.png

View More Comments
Daniel Ebers
Daniel Ebers
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
July 18, 2021

That would not be something I would worry much about. Like you said there was an attemped automatic update, a few second after that the log reads "installed", however by anonymous.

I think the alternative would be to read "installed by an automatic updater" instead of "anonymous".

Like
Reply
0 votes
Craig Schwarze _ProjectBalm_
Craig Schwarze _ProjectBalm_
Atlassian Partner
January 11, 2021

Hi Robert, I'm from ProjectBalm, the company that makes Risk Register. If you email your query to support@projectbalm.atlassian.net, we can have a look at our backend logs and see if there is any further information.

kind regards,
Craig

Reply
0 votes
Daniel Ebers
Daniel Ebers
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 6, 2021

Hi @Robert Lee

Apart from asking who actually installed the App (referring to what Prince Nyeche already explained very well) there should be a Suggestion on jira.atlassian.com from my point of view to further improve the logging. "Anonymous" looks suspicious and you are not the first user who said "was my password hacked? Who is this "anonymous" user who installed an App"?

I found something but this is probably aiming towards automatic upgrades:
https://jira.atlassian.com/browse/CONFCLOUD-67532

Question left:

  • Is there any chance the App was already present in your instance and this was "just" an upgrade?
  • Can you get on hold of all your admins asking if they erolled "Risk Register"?
    • ==> If nobody tells that he was it then it is a great mystery.

Regards,
Daniel

Reply
0 votes
Matt Doar
Matt Doar
Community Champion
January 4, 2021

There is also an audit log on the Manage Apps page itself that might show more info

View More Comments
Matt Doar
Matt Doar
Community Champion
January 4, 2021

Or ask all your Jira admins

Like
Robert Lee
Robert Lee
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 4, 2021

Thanks that is all the information that can be gleaned from the Audit Log.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
PREMIUM
PERMISSIONS LEVEL
Product Admin
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.