Audit log activities database
Audit log tracks key activities that occur within an organization. These activities can be used to diagnose problems or answer questions related to configuring and troubleshooting your organization and Atlassian products as well as to manage users and groups.
The table below is not an exhaustive list and does not encompass all audit log activities from Atlassian Administration. We are actively working to include more activities and keep this list as current as possible.
The following table provides a list of activities arranged by categories.
Category | Activities |
|---|---|
AI generated actions | Confluence Page Generated AI Content Confluence Page Triggered Policy Violation Jira Issue Generated AI Content Jira Issue Triggered Policy Violation |
App actions | App auto updated failed (permission required) App auto update attempt App disable failure App disable success App enable failed App enable success App failed installation App failed installation (unsupported protocol) App failed uninstallation App successful dependency installation App successful installation App successful uninstallation App update failed App update success Third-party app Confluence API request Third-party app Jira API request |
Atlassian accounts | Canceled deletion of account Changed email address Deactivated account Deleted account permanently Logged in to account Logged out of account Reactivated account Requested password recovery link Reset password with recovery link Scheduled deletion of account |
Atlassian Analytics actions | Added batch of foreign keys between schemas Added batch of foreign keys between tables Added batch of foreign keys in data source Added foreign key between schemas Added foreign key to table Archived dashboard Connected data source Copied chart Copied control Copied dashboard Created chart Created control Created dashboard Created dashboard subscription Created data share Created data share credentials Deleted chart Deleted control Deleted dashboard Deleted dashboard subscription Deleted data share Deleted data share credentials Disconnected data source Downloaded chart Edited Atlassian Data Lake connection Exported dashboard Granted dashboard access Granted data source access Moved chart Moved control Moved dashboard to trash Published changes to custom dashboard template Published custom dashboard template Refreshed data source Refreshed data source schema Removed dashboard access Removed data source access Removed foreign key from table Removed foreign key between schemas Renamed chart Renamed control Restored dashboard Updated chart Updated dashboard Updated dashboard subscription Updated data share Updated data source Updated foreign key between schemas Updated foreign key in table |
Bitbucket Cloud project actions | Created project Created project access token Deleted project Removed project group permission Removed project member Updated project Updated project branching model Updated project group permission Updated project member Updated project merge strategy Updated project pull request setting |
Bitbucket Cloud repository actions | Accepted request to transfer repository from workspace Accepted request to transfer repository to workspace Added repository group permission Added repository member Added repository deploy key Created repository Created repository access token Created repository webhook Created request to transfer repository from workspace Created request to transfer repository to workspace Deleted repository Deleted repository webhook Downloaded repository Rejected request to transfer repository from workspace Rejected request to transfer repository to workspace Removed repository member Removed repository deploy key Removed repository group permission Revoked request to transfer repository from workspace Revoked request to transfer repository to workspace Updated repository Updated repository member Updated repository branch restrictions Updated repository group permission Updated repository identifier Updated repository privacy setting Updated repository project Updated repository pull request settings Updated repository webhook |
Bitbucket Cloud user actions | Activated Bitbucket account Added Bitbucket app password Authorized user GPG key Authorized user SSH key Deactivated Bitbucket account Deleted Bitbucket two-step verification recovery request Disabled two-step verification in Bitbucket Enabled two-step verification in Bitbucket Generated Bitbucket two-step verification recovery email Generated Bitbucket two-step verification recovery notice email Regenerated Bitbucket two-step verification recovery codes Removed Bitbucket app password Revoked user GPG key Revoked user SSH key Updated username Viewed Bitbucket two-step verification recovery codes |
Bitbucket Cloud workspace actions | Accepted invitation to workspace Added member to workspace group Added workspace member Authorized workspace SSH key Created group in workspace Created OAuth 2.0 consumer Created workspace Created workspace access token Deleted workspace Deleted group from workspace Deleted OAuth 2.0 consumer Deleted user invitation to workspace Disabled 2SV requirement Disabled IP allowlist enforcement Enabled 2SV requirement Enabled IP allowlist enforcement Installed application Invited user to group Removed member from workspace group Removed workspace group permission Removed workspace member Revoked workspace SSH key Uninstalled application Updated workspace Updated application Updated group in workspace Updated IP allowlist Updated OAuth 2.0 consumer Updated workspace group permission Updated workspace identifier Updated workspace privacy setting |
Compass user actions | Changed Compass permission policy Created Compass custom field Created Compass incoming webhook Deleted Compass custom field Deleted compass incoming webhook Edited Compass custom field |
Confluence user actions | Added Confluence content restriction Added Confluence default space permission Added Confluence global permission Added Confluence space permission Completed Confluence blog export Completed Confluence page export Completed Confluence space export Copied Confluence default space permission Copied Confluence space permission Created Confluence blog Created Confluence page Created Confluence database Created Confluence whiteboard Created Confluence live doc Deleted Confluence blog Deleted Confluence database Deleted Confluence page Deleted Confluence whiteboard Denied Confluence page export Downloaded Confluence blog export Downloaded Confluence page export Downloaded Confluence space export Edited Confluence blog Edited Confluence live doc Edited Confluence page Initiated Confluence blog export Initiated Confluence page export Initiated Confluence space export Made request to API Published Confluence page Redacted Confluence content Removed Confluence content restriction Removed Confluence default space permission Removed Confluence global permission Removed Confluence space permission Updated classification level of Confluence content Updated default classification of Confluence space Viewed Confluence blog Viewed Confluence database Viewed Confluence page Viewed Confluence whiteboard |
Custom domains | Activated custom domain Associated a custom domain with a product Created custom domain Deactivated custom domain Deleted custom domain Detected a threat for custom domain Removed an association of a custom domain with a product Suspended custom domain |
Focus user actions | Connected site to focus Created focus area Created focus area type Created focus area update Created review report Created view Deleted focus area Deleted focus area type Deleted focus area update Deleted view Disconnected site from Focus Edited focus area Edited focus area type Edited focus area update Edited view Exported focus area Exported view Imported data spreadsheet Link a review report Unlink a review report |
Jira user actions | Added Jira global permission Added Jira issue security level Added Jira issue security level member Added Jira issue security scheme Added member to Jira project role Associated Jira issue security scheme Associated Jira project permission scheme Closed sprint Copied Jira issue security scheme Copied Jira project permission scheme Created Jira issue Created Jira project permission scheme Created issue type Created screen Created screen scheme Created screen scheme item Created sprint Deleted issue type Deleted Jira issue Deleted Jira issue security level Deleted Jira issue security scheme Deleted Jira project permission scheme Deleted Jira project role Deleted screen Deleted screen scheme Deleted screen scheme item Deleted sprint Edited Jira issue Granted permission to Jira project permission scheme Imported sprint Made request to API Removed Jira global permission Removed Jira issue security level member Removed member to Jira project role Removed permission to Jira project permission scheme Started sprint Updated classification level of a Jira issue Updated default classification level of a Jira project Updated issue type Updated Jira issue security level Updated Jira issue security scheme Updated Jira project permission scheme Updated screen Updated screen field Updated screen scheme Updated screen scheme item Updated screen tab Updated sprint Viewed Jira issue |
Jira Service Management assets actions | Added attribute in object type Added object attribute value Added users or groups to object schema role Added users or groups to object type role Attachment added to object Attachment deleted from object Attachment downloaded from object Configured attribute in object type Created object Created object schema Created object type Deleted attribute in object type Deleted object Deleted object schema Deleted object type Edited object schema name Removed object attribute value Removed users or groups to object schema role Removed users or groups to object type role Updated object attribute value |
Jira service management product actions | Connected with Microsoft teams Connected with Slack Connected with Zoom Created customer organization Created new help center Created topics in help center Created service Deleted a help center Deleted topics in help center Deleted customer organization Deleted service Disconnected from Microsoft teams Disconnected from Slack Disconnected from Zoom Edited topics in help center Enabled HIPPA-compliant alert notifications Removed service relationship Updated announcement in help center Updated a help center Updated auto-share requests with customer organization settings Updated compliance settings Updated connection with Microsoft teams Updated customer access settings Updated customer login settings Updated customer notifications setting Updated customer organization Updated customer organization permission Updated customer permissions Updated global incoming email settings Updated layout in help center Updated help center project mapping Updated help center settings Updated portal visibility in help center Updated name creation for SLA metrics permission Updated responder alert settings Updated service Updated service relationship Updated team management project creation permission |
Jira service management project actions | Added customers to project Created a new request type Created customer notification settings for team managed projects Created link as external resource Created new customers Created Queue Created portal groups Created reports Created SLA Created SLA calendar Created template form Deleted customer notification settings for team managed projects Deleted link as external resource Deleted portal groups Deleted reports Deleted Queue Deleted request type Deleted SLA Deleted SLA calendar Deleted template form Exported form responses Exported reports Invited team to project Language added to project Language availability updated Language removed from project Project customer satisfaction setting updated Project default language updated Removed customers from project Updated change management deployment pipelines Updated chat settings in Channels Updated customer organization membership Updated customer notification settings Updated customer notification settings for team managed projects Updated customer permissions Updated email account settings Updated link as external resource Updated knowledge base Updated portal groups Updated project features Updated project portal configurations Updated Queue Updated reports Updated request types Updated responder alert settings for projects Updated template form Updated virtual agent Atlassian Intelligence Answer settings Updated virtual agent Standards Flow Updated virtual agent settings in Channels Updated SLA Updated SLA calendar Updated widget settings Turned off email support or disconnected custom email account Turned on email support or connected custom email account |
Loom System Actions | Deleted Loom space video Transferred workspace content Updated Loom user status Updated privacy settings for Loom video Updated sales support type Updated workspace group Updated workspace group member Updated workspace status |
Loom User Actions | Added Loom space members Archived Loom video Assigned space to workspace group Commented on Loom video Created Loom space Created Loom video Deleted Loom space Deleted Loom video Deleted workspace data retention setting Deleted workspace user Downloaded Loom video Duplicated Loom video Loom video password updated Reacted to Loom video Removed Loom space members Shared Loom video Updated default workspace privacy setting Updated Loom space data retention setting Updated Loom space privacy settings Updated Loom video Updated Loom video permissions Updated search indexing for Loom video Updated workspace content privacy setting Updated workspace data retention setting Updated workspace domain privacy Updated workspace integration Updated workspace setting Viewed Loom video |
Operations Global Actions | Activated auto-heartbeats Added operations integration Added rules to integration Added team Created alert Created alerts filter Created custom role Created maintenance Created role-based notification Deactivated auto-heartbeats Deleted alert Deleted alerts filter Deleted custom role Deleted maintenance Deleted role-based notification Deleted rules in integration Deleted team Edited alerts filter Removed operations integration Updated alert Updated custom role Updated maintenance Updated operations integration Updated role-based notification Updated rules in integration Updated team Updated user roles |
Operations Team Actions | Added custom team role Added escalation policy Added on-call schedule Added override Added rotation Added team alert policy Added team heartbeat Added team member Created routing rule Deleted custom team role Deleted escalation policy Deleted on-call schedule Deleted override Deleted rotation Deleted routing rule Deleted team alert policy Deleted team heartbeat Removed team member Updated custom team role Updated escalation policy Updated on-call schedule Updated override Updated rotation Updated routing rule Updated team alert policy Updated team heartbeat |
Operations User Actions | Added alert notifications forwarding rule Created alert notification rule Deleted alert notification rule Deleted alert notifications forwarding rule Updated alert notification rule Updated alert notifications forwarding rule |
Organizations | Viewed organization domains Viewed organization information Viewed organization users |
Products | Changed release track for product Copied data to sandbox Created sandbox Deleted sandbox Opted in to defer rollout for product Released bundle changes for product Restored sandbox |
Rovo admin actions | Created Rovo bookmark Created 3P Connector connection Deleted Rovo bookmark Deleted 3P Connector connection Updated Rovo bookmark Updated 3P Connector connection |
Rovo user actions | Create definition in Rovo Created Rovo agent Deleted Rovo agent Started chat with Rovo agent Updated Rovo agent |
Security policies | Activated data security policy Added apps to data security policy Added products to data security policy Added authentication policy Added coverage for data security policy Added description for data security policy Added rule to data security policy Added SAML configuration Archived classification level Authentication policy type updated Changed authentication policy for domain Changed default authentication policy Changed user’s authentication policy Created classification level Created data security policy Created policy Deactivated data security policy Deleted authentication policy Deleted data security policy Deleted policy Deleted SAML configuration Disabled policy Edited policy Enabled policy Enforced two-step verification for managed accounts Enforced two-step verification for user Excluded user from two-step verification External user types updated Failed to update authentication policy for domain Failed to update authentication policy for user Published classification level Removed apps from data security policy Removed coverage for data security policy Removed domain from authentication policy Removed external user Removed products from data security policy Removed rule from data security policy Removed user from authentication policy Renamed classification level Renamed data security policy Reset password for user Reset password for users in authentication policies Reset passwords for managed accounts Reset session for external users Reset session for users in authentication policies Reset two-step verification for user Restored classification level Revoked API tokens for users in authentication policy Saved external user Scheduled product move to realm Started storing user-created activity Stopped enforcing two-step verification for managed account Stopped storing user-created activity Switched app list rule on data security policy Updated authentication policy Updated classification level Updated coverage from data security policy Updated description for data security policy Updated idle session duration Updated password policy Updated SAML configuration Validated organization policy Viewed organization policies |
Settings | Added domain to verify Added user as organization admin API keys searched API tokens searched Created API token Revoked API token Confluence company-connection created Confluence company-connection deleted Claimed accounts for domain Created admin API key Created application tunnel Created audit log webhook registration Created identity provider directory Deleted application tunnel Deleted audit log webhook registration Deleted identity provider directory Exported API tokens Exported API keys Exported accounts for verified domain Exported discovered products Exported Enterprise product users Exported external users Exported managed accounts Exported organization audit log Exported user counts list Initiated creation of site Initiated transfer of products from organization Initiated update to site URL Linked domain to directory Moved domain from directory New site created Regenerated token for application tunnel Removed domain Removed user as an organization admin Renamed identity provider directory Revoked admin API key Settings update Started to verify domain Unclaimed accounts for domain Unverified domain Updated account profile for user Updated audit log webhook registration Updated automatic account claim Updated in-product recommendation preferences Verified domain Viewed API token Viewed discovered products Viewed discovered products count |
Talent User Actions | All data removed Data imported |
Team Management | Added user to team Changed team description Changed team name Changed to managed team Changed to normal team Created team Deleted team Linked team to Confluence space Linked team to group Linked team to Jira project Linked team to SCIM group Removed user from team Requested to join team Restored team Unlinked team from Confluence space Unlinked team from group Unlinked team from Jira project Unlinked team from SCIM group |
User-access settings | Added domain to approved domains Added notify admin setting Added site based approved domains Added products to approved domains Connected to third-party integrations Created invitation URL Disabled invites of managed accounts Disabled third-party invites Disconnected from third-party integrations Enabled invites of managed accounts Enabled third-party invites Regenerated invitation URL Remove domain from approved domains Removed invitation URL Removed products from approved domains Removed site based approved domains Reset user access settings Updated access request settings Updated approved domains through domains enabled signup promotion Updated invite settings Updated notify admin settings Updated not allowed invite note Updated site based domain enabled signup setting |
User management | Added suspended user to organization Added suspended user to site Added user to group Admin group search within organization Admin users search within organization Approved access request Created access request Created account for user Created group Deleted group Exported users from directory Exported users from site Granted organization access to user Granted product access to group Granted product access to user Granted product admin access to group Granted role to group Granted role to user for product Granted site access to user Invited user to organization Invited user to site Joined through approved domains Joined through invitation URL Logged in as user Made group a default group Prompted user to reset password Product role migration Rejected access request Remove default access from group Removed default setting from group Removed product access from group Removed role from group Removed user from group Removed user from organization Removed user from site Renamed a group Renamed duplicate group Resent invite to user Resent site invitation to user Reuse site group name Revoked organization access from user Revoked product access from user Revoked role from user for product Revoked site access from user Suggested changes to details for user Updated group to default group Viewed last active dates |
User provisioning | Added group from identity provider Added user from identity provider Added user to group Cleared user provisioning troubleshooting log Completed automatic sync from external directory Completed manual sync from external directory Connected to Google workspace Created user provisioning directory Deleted user provisioning directory Disabled requiring Google login Disabled sync from external directory Disconnected from Google workspace Enabled requiring google login Enabled sync from external directory Initiated automatic sync from external directory Initiated manual sync from external directory Invited user after Google workspace sync Linked Atlassian account to user in identity provider Made user a managed account Made user an unmanaged account Reconfigured external directory Regenerated API key for user provisioning directory Removed group from identity provider Removed user from identity provider Removed user from group Removed user provisioning directory Renamed a group Synced groups with conflicts from external directory Synced all groups with conflicts from external directory Synced groups to site Synced user to site Unliked group from SCIM Unlinked Atlassian account from user in identity provider Updated account profile for user Updated external identifier of group Updated Google workspace invite message Updated user identifier to user principal name for identity provider Updated user identifier to email for identity provider |
Backup and restore | Completed backing up data Partially completed backing up data:
Failed to back up data Completed restoring data Partially restored data Failed to restore data |
If you are encountering issues following this documentation - please raise a support ticket.
Was this helpful?