View audit log activities
Audit logs are a table of activities, organized by activity type, date, time, actor, app, location, and IP address. The actor may be a user or the Atlassian system.
Insights are only available to organizations with an Atlassian Guard subscription (Standard or Premium) or at least one Enterprise plan. Without these subscriptions, organization-level logs will not store or display any events. Read more about which activities are available with which subscription plan.
Who can do this? |
By default, activities from the past 7 days are visible. If you modify the date range, you can see up to 180 days of history, but only for events logged during that period.
To start logging more things at the organization level, you can upgrade your subscription (for example, to an Atlassian Guard or Enterprise plan), but this doesn’t recover events from before you upgraded.
To view and search your organization's audit log:
Go to Atlassian Administration. Select your organization if you have more than one.
Select Insights > Audit log.
Enter your search criteria in the text field of the filters. You can search for activities with users' names, email addresses, activity names, or site names. You must enter an exact term.
Note: For complete visibility of activities, ensure your organization’s domain is registered and associated accounts are claimed, as some audit log entries (for example, API token activities) are tied to managed accounts.
Narrow the search results by specifying the dates.
Select Apply to search.
To view and search your site's audit log:
Go to Atlassian Administration. Select your site if you have more than one.
Select Apps and then select your site.
Under Site settings, select Audit log.
Enter your search criteria in the text field of the filters. You can search for activities with users' names, email addresses and activity names. You must enter an exact term.
Narrow the search results by specifying the dates.
Select Apply to search.
The search bar is not available to site admins for accessing audit log data.
It may take a few minutes for new activities to appear in the audit log.
You can automate this process with the Events API.
View audit log in a detailed side panel
Audit log detailed side panel provides an in-depth look at each activity, with options to copy and view the JSON data.
To view your site’s detailed side panel:
Go to Atlassian Administration. Select your site if you have more than one.
Select Apps and then select your site.
Under Site settings, select Audit log.
Enter your search criteria in the text field. You can search for activities with users' names, email addresses and activity names. You must enter an exact term.
Narrow the search results by specifying the dates.
Select Apply to search.
Select an activity from the table, and a detailed side panel will appear on the right-hand side.
View the detailed panel.
To view your site’s detailed side panel:
Third party app activity logs
These are actions performed by users and third-party apps in the form of API calls to applications like Jira and Confluence.
There are other application lifecycle logs that include activities such as App failed installation. Third-party app activity logs track actions performed by a third party app, such as reading or deleting data, in accordance with the app's permissions.
To view and search for third party app activity logs:
Go to Atlassian Administration. Select your organization if you have more than one.
Select Insights > Audit log.
Search for Third-party app Confluence API request and/or Third-party app Jira API request (depending on your criteria) select from App actions category in the Activities filter.
Narrow the search results by specifying the dates.
Select Apply to search.
How long are audit log activities stored?
Audit logs activities are stored for up to 180 days. Any activity older than 180 days is removed from the audit log and can’t be recovered. If you need to keep records for longer, export and save your audit logs regularly. Read more on how to export your audit logs
Was this helpful?