Skip to content

Configuring Identity Analytics

Using the WSO2 Identity Server Analytics distribution, you can view and analyze statistics related to authentication requests that go through the WSO2 Identity Server. For more information, see Analytics.

Scenario

A taxi company called "Pickup" has launched a new application to be used by their customers. The Pickup developers wish to measure the performance of the authentication mechanism used for users to log into the application so that they can improve the user login experience.

To do this, the developers need to view authentication statistics about the login attempts to the application. This tutorial demonstrates how the Pickup developers can set up WSO2 IS Analytics to view login attempts to the Pickup application.

Set up

  1. Download WSO2 Identity Server.

  2. Download WSO2 Identity Server Analytics distribution.

Enable analytics

Follow the steps below to configure WSO2 Identity Server Analytics.

  1. Open the deployment.toml file found in the <IS_HOME>/repository/conf folder and enable the following event publishers to enable analytics in WSO2 Identity Server.

    [identity_mgt.analytics_login_data_publisher]
    enable=true
    [identity_mgt.analytics_session_data_publisher] 
    enable=true
  2. An HTTP connection is used to communicate between WSO2 IS and WSO2 IS Analytics. Therefore, you must add the certificate of WSO2 IS Analytics to WSO2 IS. Follow the steps given below to import the certificate from WSO2 IS Analytics to WSO2 IS. Import the public certificate of each keystore to the client­-truststore.jks of the WSO2 IS. This example uses the default keystores and certificates.

    1. Navigate to the <ISANALYTICS_HOME>/resources/security directory on a new terminal window and run the following command. The default keystore password is wso2carbon.

      keytool -export -alias wso2carbon -keystore wso2carbon.jks -file sp.pem
    2. Navigate to the <IS_HOME>/repository/resources/security directory and run the following command.

      Info

      Replace the <ISANALTICS_HOME> placeholder in the command with the filepath location of your <ISANALYTICS_HOME> folder.

      keytool -import -alias certalias -file <ISANALYTICS_HOME>/resources/security/sp.pem -keystore client-truststore.jks -storepass wso2carbon

The rest of the configurations required to connect the analytics distribution with the WSO2 IS distribution have already been pre-configured for fresh distributions. To see more information about these pre-configurations, see Prerequisites to Publish Statistics.

If you do not need to change the default values, proceed to start the servers.

Start the servers

  1. Navigate to <IS_HOME>/bin directory via a command prompt and start the WSO2 IS server by executing one of the following commands.

    sh wso2server.sh
    wso2server.bat run
  2. WSO2 IS Analytics has two nodes. Navigate to <ISANALYTICS_HOME>/bin directory and execute the following commands via a command prompt to start each node.

    1. Start the worker node. The worker node listens to the authentication statistics from WSO2 Identity Server and then analyzes and monitors them.

      sh worker.sh
      worker.bat run
    2. Start the dashboard node. The dashboard node displays the processed information using the dashboard interface.

      sh dashboard.sh
      dashboard.bat run

Try it out

Let's create some basic authentication statistics. To do this, log in to the WSO2 IS dashboard. This login attempt will be published to WSO2 IS Analytics and you will be able to view the login attempt using the WSO2 IS Analytics dashboard.

  1. Log in to the WSO2 Identity Server My Account using admin/admin credentials.

  2. Next, access the WSO2 Identity Server Analytics Dashboard at the following URL:

    https://<HTTPS_IS_ANALYTICS_HOST>:9643/portal

  3. Log in using admin/admin credentials.

  4. Click IS Analytics.

    is-analytics

    Note that there is 1 successful login attempt published on the dashboard.

    is-analytics-login-attempts

You have succesfully enabled WSO2 IS Analytics and published statistics to the dashboard. For more information on what you can do with IS analytics, see Analytics.

Top