SupportDashboard

Audit Logs

The Audit Logs feature provides comprehensive visibility into all security events and user activities across your organization.

Key Features

  • Pre-configured Filter Sets: Choose from predefined views tailored to different use cases

  • Flexible Date Range Filtering: Filter events by specific time periods

  • Advanced Filtering System: Create complex filter queries with multiple conditions

  • Rich Event Details: View comprehensive information about each audit event

  • Multi-connector Support: Track events across different platforms (Fenixpyre, OneDrive, Egnyte, Box, CMMC, and more)

Getting Started

Accessing Audit Logs

  1. Navigate to the Audit Logs section from the main navigation menu

  2. You'll see the Audit Logs dashboard with a filter set dropdown at the top

First Steps

  1. Select a Filter Set: Choose a filter set from the dropdown to begin viewing audit logs

  2. Review the Table: Once a filter set is selected, the table will populate with relevant audit events

  3. Apply Filters: Use date range and advanced filters to narrow down your search

Filter Sets

Filter sets are pre-configured views that determine which columns and data are displayed in the audit logs table. Each filter set is designed for specific use cases and provides relevant columns for that scenario.

Selecting a Filter Set

  1. Click on the Filter Set dropdown at the top of the page

  2. Browse through available filter sets - each shows:

    • Name: The filter set's display name

    • Description: A brief explanation of what the filter set shows

  1. Click on a filter set to apply it

  2. The table will automatically refresh with data matching that filter set

Understanding Filter Sets

  • Each filter set shows different columns relevant to its purpose

  • You can switch between filter sets at any time

The URL will update when you select a filter set, allowing you to bookmark specific view

Date Range Filtering

The date range picker allows you to filter audit logs by a specific time period. This is one of the most common ways to narrow down your search.

Using the Date Range Picker

  1. Click on the Date Range Picker field (located next to the Filter Set dropdown)

  2. Select a start date from the calendar

  3. Select an end date from the calendar

  4. The table will automatically refresh with events within that date range

Date Range Features

  • Quick Selection: Choose from preset ranges (Today, Last 7 days, Last 30 days, etc.)

  • Custom Range: Select any custom date range

  • Clear Filter: Click the X button on the date range tag to remove the filter

  • Visual Indicator: Applied date ranges are displayed as green tags above the table

Best Practices for Date Ranges

  • Start with broader date ranges and narrow down as needed

  • Use date ranges in combination with other filters for precise results

  • Remember that very large date ranges may take longer to load

Advanced Filtering

The Advanced Filter feature provides powerful query-building capabilities to create complex filter conditions. This is ideal for finding specific events or patterns.

Opening the Advanced Filter Sidebar

  1. Click the Advanced Filter button (located next to the Date Range Picker)

  2. A sidebar will slide in from the right side of the screen

  3. The sidebar contains the filter builder interface

Understanding Filter Groups

Filter groups allow you to organize multiple filter conditions:

  • Filter Group: A container for multiple filter conditions

  • Logical Operators: Each group uses AND or OR to combine conditions

  • Multiple Groups: You can create up to 10 filter groups

  • Nested Groups: Groups can contain nested sub-groups for complex queries

Creating a Filter Condition

  1. In a filter group, click Add Condition

  2. Select a Field from the dropdown (e.g., Action, Status, File Name, etc.)

  3. Choose an Operator:

    • Equals (=): Exact match

    • Not Equals (!=): Exclude specific values

  4. Enter a Value in the input field

  5. The condition will be added to the current filter group

Adding Multiple Conditions

  • Click Add Condition to add more conditions to the same group

  • Conditions within a group are combined using the group's logical operator (AND/OR)

  • You can add as many conditions as needed within each group

Creating Multiple Filter Groups

  1. Click Add Filter Group at the bottom of the sidebar

  2. A new filter group will be created

  3. Add conditions to the new group

  4. Multiple groups are combined with AND logic (all groups must match)

Nested Groups

For complex queries, you can create nested groups:

  1. Within a filter group, click Add Sub-Group

  2. A nested group will be created inside the parent group

  3. Nested groups allow for complex logical combinations

Applying Filters

  1. After building your filter conditions, click Apply Filters at the bottom of the sidebar

  2. The sidebar will close and the table will refresh with filtered results

  3. Applied filters will be displayed as tags above the table

Managing Applied Filters

Applied filters are displayed as colored tags above the table:

  • Blue Tags: Individual filter conditions

  • Purple Tags: Filter groups with multiple conditions

  • Green Tags: Date range filters

Removing Individual Filters

  • Click the X button on any filter tag to remove that specific filter

  • The table will automatically refresh

Clearing All Filters

  • Click Clear All button to remove all applied filters (including date range)

  • This resets the view to show all data for the selected filter set

Pagination and Loading More Data

The audit logs table uses a "Load More" pagination system to efficiently handle large datasets.

Understanding Pagination

  • Initial Load: The table loads the first 50 events by default

  • Total Count: The pagination bar shows how many events match your filters

  • Load More Button: Click to load the next 50 events

PreviousCustomizationsNextLog Streaming

Last updated

Was this helpful?