About Audit Log

Audit logs allow administrators to monitor the actions performed by all the users in the Administration Console. The audit log reporting functionality enhances the accountability of actions. Administrators can find the root cause of any issue by identifying the resources on which the action was performed and who performed the action. Users can view, search, and filter audit data. The audit log contains data for up to four weeks at any point of time.

Audit of Administration Objects


The Audit Log contains the list of all the actions performed by the various users in the Administration Console. The following fields are within the Audit log view:

  1. Device IP: The source IP address of the user who performed the action.

  2. Audit Date: The date and time when the action was performed.

  3. Actor: Name of the user who performed the action. For example, if an action was performed by a department administrator called John, then John would be mentioned under this field.

  4. Department: Name of the department where the action is performed. When the action is performed at the partition level, Partition is mentioned under this field.

  5. Resource Type: Resource type of the administration object. For example, Calendar, Users, Workflow, and so on.

  6. Resource Identifier: The resource on which the action was performed. For example, if the administrator creates a user, then User is the resource type whereas the name of the user, say Greg, is the resource identifier. For the Update action type, the updated value of the attribute of the object will be visible under the Resource Identifier field. For example, if the administrator changes the user’s name from Greg to Gregson, then the latter is mentioned under this field.

  7. Action Type: The action that was performed on the object. It includes the following actions: Create, Update, or Delete.

    For objects with multi-side relationships, the changes are logged against the object which was modified. For example, the event of adding a user to a group is captured in the audit log as an event for the user group and not for the user.

  8. Details: A Show More link is available in this field, which shows further details for the other audit data fields. This link is disabled for the Delete action type. The detailed data consists of:

    1. Attribute Name: The name of the attributes on which the action was performed.

    2. Old Value: Previous value of the attribute. This field appears for the Update action type.

    3. New Value: Current value of the attribute. This field is available for Create and Update action types.

    4. Permissions Granted and Permissions Removed: Permissions granted to or removed from the user on the following objects: user, user groups, usage links, usage link groups, routing queues, departments, or partition. These fields are available only when such an action has been performed. The Show More link lists the attribute name, the name assigned to that attribute and all the permissions granted or removed in a tabular format.

Related Topics

  1. Viewing the Audit Log