Audit Log Search¶
Use Audit Log Search to review user and system activity recorded inside a domain. This page is primarily useful for domain administrators who need to investigate changes, confirm who performed an action, or review activity over a time period.
Note: Access to this page depends on the
audit_searchscope and the permissions assigned to the administrator.
Typical Workflow¶
- Open Audit Log Search from domain administration.
- Filter by object type, date range, action type, result, or object ID.
- Add user, username, or source/IP filters when you need to narrow the result set further.
- Review the result list and open the relevant success or failure entry to inspect the full record.
Main Filters¶
Use the filters at the top of the page to narrow the log entries before reviewing the result list.
Object
Select the type of object involved in the logged action, such as a user, group, or process.
Date
Specify the time period to search.
Type
Select the action type, such as create, update, or delete.
Result
Use this filter to narrow the log entries by the recorded result value shown by the system. The exact values can vary depending on the logged operation.
Additional Filters¶
Use the additional filters when the main filters still return too many records.
User
Select a specific Emakin user from the list.
Username
Search by username text.
Source
Filter by source IP address.
Object ID
Enter a specific object ID when you need the audit trail for one object instance.
Search Results¶
The results table shows the entries that match the current filter set.
Each row includes the logged date, object type, action type, source/IP address, user, and result.
Search
Use the search box to filter within the currently displayed result set.
Details View
Select the status/result button in the result column to open the full record.
The detail view provides the full transaction data recorded for the selected entry, including whether the operation succeeded or failed.