Learn about security solutions and standards
Care about security? We do too. Learn what Atlassian does and what you can do too.
Audit log activities database
Audit log tracks key activities that occur within an organization. These activities can be used to diagnose problems or answer questions related to configuring and troubleshooting your organization and Atlassian products as well as to manage users and groups.
The table below is not an exhaustive list and does not encompass all audit log activities from Atlassian Administration. We are actively working to include more activities and keep this list as current as possible.
The following table provides a list of activities arranged by categories.
Category | Activities |
|---|---|
Atlassian accounts | Canceled deletion of account Changed email address Deactivated account Delete account permanently Logged out of account Reactivated account Requested password recovery link Scheduled deletion of account |
Bitbucket Cloud project actions | Created project Deleted project Removed project group permission Removed project member Updated project Updated project branching model Updated project group permission Updated project member Updated project merge strategy |
Bitbucket Cloud repository actions | Accepted request to transfer repository from workspace Accepted request to transfer repository to workspace Added repository group permission Added repository member Added repository deploy key Created repository Created repository webhook Created request to transfer repository from workspace Created request to transfer repository to workspace Deleted repository Deleted repository webhook Rejected request to transfer repository from workspace Rejected request to transfer repository to workspace Removed repository member Removed repository deploy key Removed repository group permission Revoked request to transfer repository from workspace Revoked request to transfer repository to workspace Updated project pull request setting Updated repository Updated repository member Updated repository branch restrictions Updated repository group permission Updated repository identifier Updated repository privacy setting Updated repository project Updated repository pull request settings |
Bitbucket Cloud user actions | Activated Bitbucket account Added Bitbucket app password Authorized user SSH key Deactivated Bitbucket account Deleted Bitbucket two-step verification recovery request Disabled 2SV requirement Disabled two-step verification in Bitbucket Enabled 2SV requirement Enabled two-step verification in Bitbucket Generated Bitbucket two-step verification recovery email Generated Bitbucket two-step verification recovery notice email Regenerated Bitbucket two-step verification recovery codes Removed Bitbucket app password Revoked user SSH key Updated username Viewed Bitbucket two-step verification recovery codes |
Bitbucket Cloud workspace actions | Accepted invitation to workspace Added member to workspace group Added workspace member Authorized workspace SSH key Created group in workspace Created OAuth 2.0 consumer Created workspace Deleted workspace Deleted group from workspace Deleted OAuth 2.0 consumer Deleted user invitation to workspace Disabled IP allowlist enforcement Enabled IP allowlist enforcement Installed application Removed member to workspace group Removed workspace group permission Removed workspace member Revoked workspace SSH key Uninstalled application Updated workspace Updated application Updated group in workspace Updated IP allowlist Updated OAuth 2.0 consumer Updated workspace group permission Updated workspace privacy setting |
Confluence app actions | Confluence app auto update attempt Confluence app auto update failed (permission required) Confluence app disable failure Confluence app disable success Confluence app enable failure Confluence app enable success Confluence app failed installation Confluence app failed installation (unsupported protocol) Confluence app successful dependency installation Confluence app successfully installation Confluence app successfully uninstallation Confluence app updated failed |
Confluence user actions | Added Confluence content restriction Added Confluence default space permission Added Confluence global permission Added Confluence space permission Completed Confluence blog export Completed Confluence page export Completed Confluence space export Copied Confluence default space permission Copied Confluence space permission Created Confluence blog Created Confluence page Deleted Confluence blog Deleted Confluence page Downloaded Confluence blog export Downloaded Confluence page export Downloaded Confluence space export Edited Confluence blog Edited Confluence page Initiated Confluence blog export Initiated Confluence page export Initiated Confluence space export Made request to API Removed Confluence content restriction Removed Confluence default space permission Removed Confluence global permission Removed Confluence space permission Updated classification level of Confluence content Updated default classification of Confluence space Viewed Confluence blog Viewed Confluence page |
Custom domains | Activated custom domain Associated a custom domain with a product Created custom domain Deactivated custom domain Deleted custom domain Detected a threat for custom domain Removed an association of a custom domain with a product Suspended custom domain |
Jira app actions | Jira app auto update attempt Jira app auto update failed (permission required) Jira app disable failure Jira app disable success Jira app enable failure Jira app enable success Jira app failed installation Jira app failed installation (unsupported protocol) Jira app successful dependency installation Jira app successfully installation Jira app successfully uninstallation Jira app updated failed |
Jira user actions | Added Jira global permission Added Jira issue security level Added Jira issue security level member Added Jira issue security scheme Added member to Jira project role Associated Jira issue security scheme Associated Jira project permission scheme Closed sprint Copied Jira issue security scheme Copied Jira project permission scheme Created Jira issue Created Jira project permission scheme Created sprint Deleted Jira issue Deleted Jira issue security level Deleted Jira issue security scheme Deleted Jira project permission scheme Deleted Jira project role Deleted sprint Granted permission to Jira project permission scheme Imported sprint Made request to API Removed Jira global permission Removed Jira issue security level member Removed member to Jira project role Removed permission to Jira project permission scheme Started sprint Updated classification level of a Jira issue Updated Jira issue security level Updated Jira issue security scheme Updated Jira project permission scheme Updated sprint Viewed Jira issue |
Jira service management product actions | Connected with Microsoft teams Connected with Slack Connected with Zoom Created customer organization Created topics in help center Deleted topics in help center Deleted customer organization Disconnected with Microsoft teams Disconnected with Slack Disconnected with Zoom Edited topics in help center Updated auto-share requests with customer organization settings Updated connection with Microsoft teams Updated customer login settings Updated customer notifications settings Updated customer organization Updated customer organization permission Updated customer permissions Updated global incoming email settings Updated help center settings Updated name creation for SLA metrics permission Updated team management project creation permission |
Jira service management project actions | Added customer to project Created a new request type Created customer notification settings for team managed projects Created new customers Created portal groups Created reports Created SLA Created SLA calendar Deleted customer from project Deleted customer notification settings for team managed projects Deleted customer notification settings for team managed projects Deleted portal groups Deleted reports Deleted request type Deleted SLA Deleted SLA calendar Exported reports Updated change management deployment pipelines Updated customer notification settings for team managed projects Updated knowledge base Updated portal groups Updated project features Updated project portal configurations Updated reports Updated request types Updated SLA Updated SLA calendar |
Organizations | Viewed organization domains Viewed organization information Viewed organization users |
Products | Changed release track for product Copied data to sandbox Created sandbox Deleted sandbox Released bundle changes for product Restored sandbox |
Security policies | Activated data security policy Added apps to data security policy Added coverage for data security policy Added description for data security policy Added rule to data security policy Added SAML configuration Archived classification level Authentication policy type updated Changed authentication policy for domain Changed default authentication policy Changed user’s authentication policy Created classification level Created data security policy Deactivated data security policy Deleted authentication policy Deleted data security policy Deleted SAML configuration Enforced two-step verification for managed accounts Enforced two-step verification for user Excluded user from two-step verification Excluded users from two-step verification Failed to update authentication policy for domain Failed to update authentication policy for user Published classification level Removed coverage from data security policy Removed apps from data security policy Removed coverage for data security policy Removed domain from authentication policy Removed external users Removed rule from data security policy Removed user from authentication policy Renamed classification level Renamed data security policy Reset password for user Reset password for users in authentication policies Reset passwords for managed accounts Reset session for external users Reset session for users in authentication policies Restored classification level Saved external users Scheduled product move to realm Started storing user-created activity Stopped enforcing two-step verification for managed account Updated authentication policy Updated classification level Updated coverage from data security policy Updated description for data security policy Updated idle session duration Updated idle session duration Updated password policy Updated SAML configuration Validated organization policy Viewed organization policies |
Settings | Added domain to verify Added domain to verify Added org admin API token created API token revoked Confluence company-connection created Confluence company-connection deleted Created API token Created application tunnel Created audit log webhook registration Created identity provider directory Created identity provider directory Created or initiated? Deleted application tunnel Deleted audit log webhook registration Deleted identity provider directory Deleted identity provider directory Export api tokens Export external users Exported accounts for verified domain Exported discovered products Exported managed accounts Exported organization audit log Initiated transfer of products from organization Linked domain to directory Moved domain from directory Regenerated token for application tunnel Removed domain Removed org admin Renamed identity provider directory Revoked API token Site created Site initiated Started to verify domain Unclaimed accounts for domain Unverified domain Updated account profile for user Updated audit log webhook registration Updated automatic account claim Updated automatic account claim Updated in-product recommendation preferences Verified domain Viewed API token Viewed discovered products Viewed discovered products count |
User-access settings | Added domain to approved domain Added domain to approved domains Added notify admin setting Admin groups search within organization Admin users search within organization Connected to third-party integrations Created invitation URL Disabled invites of managed accounts Disabled third-party invites Disconnected from third-party integrations Enabled invites of managed accounts Enabled third-party invites Joined through invitation URL Regenerated invitation URL Remove domain from approved domain Removed invitation URL Reset user access settings Updated access request setting Updated approved domains through domains enabled signup promotion Updated invite settings Updated notify admin settings |
User management | Added suspended user to organization Added suspended user to site Added user to group Approved access request Created access request Created account for user Created group Deleted group Exported users from directory Exported users from site Granted organization access to user Granted product access to group Granted product access to user Granted product admin access to group Granted role to group Granted role to user for product Granted site access to user Invited user to organization Invited user to site Joined through approved domains Logged in as user Made group to a default group Prompted user to reset password Rejected access request Remove default access from group Removed default setting from group Removed product access from group Removed product admin access to group Removed user from group Renamed a group Renamed duplicate group Resent invite to user Resent site invitation to user Reuse site group name Revoked organization access from user Revoked product access for user Revoked role from user for product Revoked site access from user Suggested changes to details user Updated group to a default group Viewed last active dates |
User provisioning | Added group from identity provider Added user from identity provider Added user to group Cleared user provisioning troubleshooting log Completed manual sync from external directory Completed manual sync from external directory Connected to Google workspace Created user provisioning directory Created user provisioning directory Deleted user provisioning directory Disabled sync from external directory Disconnected from Google workspace Enabled requiring google login Enabled sync from external directory Initiated automatic sync from external directory Initiated manual sync from external directory Invited user after Google workspace sync Linked Atlassian account to user in identity Made user a managed account Made user an unmanaged account Reconfigured external directory Regenerated API key for user provisioning directory Removed group from identity provider Removed user from identity provider Synced all groups with conflicts from external directory Synced groups to site Synced user to site Unliked group from SCIM Unlinked Atlassian account from user in identity provider Updated external identifier of group Updated Google workspace invite message |
If you are encountering issues following this documentation - please raise a support ticket.
Was this helpful?
Still need help?
The Atlassian Community is here for you.