Using the audit log

The following information can be retrieved from the audit log if the app Auditing/Logging is enabled:

Files

  • File
    • created
    • accessed
    • updated
    • renamed
    • copied
    • removed
    • deleted
  • File version
    • restored
    • deleted
  • File shared with/unshared from (including set permissions and expiration date)
    • user
    • group
    • public link
    • email recipient
    • Talk conversation
    • Circle
    • remote user (federation)
    • remote group
  • Share permissions changed
  • Password of public share changed
  • Expiration date changed
  • Public share having been accessed
  • Trashbin
    • file deleted from trashbin
    • file restored from trashbin
  • Image preview accessed

Authentication

  • Login successful/failed
  • Two Factor login attempt successful/failed
  • Logout

User management

  • User created/deleted
  • User enabled/disabled
  • Email address changed
  • Password changed
  • UserID assigned/unassigned
  • Group created/deleted
  • User added to/removed from group

Apps management

  • App enabled/disabled
  • App limited to user groups

Console

  • Console command executed

 

Logging level and target a


Attached Files
There are no attachments for this article.