It would be nice if RHQ stored some login audit trail information, such as who logged in and when they logged in. Would need a page (probably in Administration somewhere) that lets you view this login audit trail and purge old audit data you no longer need. Would need new code in DataPurgeJob to purge the audit trail to avoid it growing unbounded.
The db table needed would be very simple - since its a log purely for security-auditng purposes, you don't need any foreign key relationships back to the subject table. Just store the username and the login time. Then we can run simple reports on that two-column table such as "who logged in in the last month", "how often did joey log in in the past year", etc. TABLE: rhq_login_audit COLUMNS: subject (VARCHAR), login_time (LONG)
This bug was previously known as http://jira.rhq-project.org/browse/RHQ-1007
mass move off of the qa rhq_triage queue, these are dev subtasks
*** Bug 534205 has been marked as a duplicate of this bug. ***