Skip to content

Audit Logs

Audit logs capture security-relevant actions: authentication events, settings changes, RBAC updates, and other mutations configured for auditing.

View logs

Section titled “View logs”
  1. Go to SettingsAudit (/settings/audit).
  2. Filter by user, action, resource, and time range.
  3. Export if your tenant exposes CSV/JSON export in the UI.

Requires settings.audit.read.

What is logged

Section titled “What is logged”

Typical entries include:

  • User login/logout and MFA events
  • Group and permission changes
  • API key lifecycle
  • License and retention updates

Not all read operations are logged — focus is on administrative and security-sensitive writes.

See also

Section titled “See also”