The Audit Log viewer is the easiest way consume and understand your audit log data. This guide will walk you through the viewer’s features.
The viewer exposes four core features:
- API Token Management.
The search box allows for free-text search of all audit events, but also supports some structured search operators. Some example searches:
edit– free text search
action:users.list– search by action
action:document.* location:Germany– search by action and location
actor.id:[email protected]– search by actor id
action:user.login,user.logout– seach by multiple actions
The filters section allows for filtering events by date range, and by Create/Read/Update/Delete actions.
Save searches and export them to CSV using the “Exports” section.
Create and Manage Enterprise Audit Log Retrieval API tokens using the “API Tokens” section.
For a guide on using API Tokens, see Using the Enterprise Audit Log Retrieval API