• Documentation

What activities does the audit log include?

The audit log tracks key activities that occur within Atlassian organization. Use these activities to diagnose problems or questions related to user details, product access, user accounts, and organization settings.

Who can do this?
Role: Organization admin

The audit log tracks the administration activities related to:

  • Directories, users, and groups

  • Products and product access

  • Security configuration

  • General organization settings Track user-created activity


Product audit logs

Audit logs already exist in Jira Cloud and Confluence Cloud. To access audit logs in Atlassian Administration, you must have atleast Atlassian Guard Standard.

The table below shows the types of activities you can find in each audit log.

 

Jira Cloud / Confluence Cloud

Atlassian Guard Standard

Atlassian Guard Standard

+ Premium Product

Atlassian Guard Premium

Cloud Enterprise

Example activities

  • Changes to project configuration for Jira

  • Changes to space permissions for Confluence

  • Changes to sprint related actions

  • Changes to a user’s product or site access

  • Group creations and deletions

  • Changes to a group’s membership

  • Changes to a group’s product or administration access

  • Changes to a user’s product or site access

  • Group creations and deletions

  • Changes to a group’s membership

  • Changes to a group’s product or administration access

  • Changes to product settings

  • Changes to space/ project permission

  • Tracks user-created activity

    • Create

    • Edit

    • View

    • Delete

  • Tracks API token usage

  • Export activity

    • Confluence pages

    • Confluence spaces

  • Audit log webhook

  • Tracks user-created activity

    • Create

    • Edit

    • View

    • Delete

  • Tracks API token usage

  • Export activity

    • Confluence pages

    • Confluence spaces

  • Audit log webhook

Scope

Each individual product

All sites and products added to the organization

All sites and products added to the organization

Jira and Confluence

Jira and Confluence

Jira and Confluence

Storage

Determined by each product’s storage limits

Retain for 180 days

Retain for 180 days

Retain for 180 days

Retain for 180 days

To find out about audit log events available in each product:

User-created activity

Who can do this?
Role: Organization admin
Plan: Atlassian Guard Premiumor Cloud Enterprise

By default, the audit log tracks user-created activity for all accounts, such as viewing or creating a Confluence page.

In admin.atlassian.com there are references to when a user was Last active. This refers to the last time the user viewed a product's page for a minimum of 2 seconds, which may differ from the audit logs activities.

You can choose whether to store user-created content such as page titles in the audit log. When you update your settings in the audit log, you can see these changes in activity.

Audit log user created activity
  1. Stored - you can see the Confluence page title and/or Jira issue identification in the audit log.

  2. Not Stored – you’re unable to see the Confluence page title and/or Jira issue identification in the audit log.

Data residency considerations

Data residency isn’t available for the audit log. You may want to update the audit log settings to exclude sensitive content. Understand data residency

Change settings for user-created activity

To change the user-created activity settings:

  1. Go to admin.atlassian.com. Select your organization if you have more than one.

  2. Select Security > Audit log.

  3. Select Settings.

  4. For each product choose whether to store user-created activity.

 

Still need help?

The Atlassian Community is here for you.