Unify and manage your data

Security Audit Log API

Learn about the Security Audit Log.

The Security Audit Log filters audit log details on-demand and exports reports in CSV or JSON formats.

Security Audit Log API Overview

The Security Audit Log filters audit log details on-demand and exports reports in convenient CSV or JSON formats. It's ideal for routine checks, immediate investigations, or when integrating real-time security event monitoring into your workflows. Think of this API as a buddy that keeps tabs on all the security-related happenings in your system. It helps pull the details of who's doing what, where, and when they did it.
Near real-time audit log reports
Get reports in near real-time or for any period of time in the past. This comes in handy when you need to jump on an issue. To automate these reports, set your Security Information and Event Management (SIEM tool, like Splunk) to chat with the API at regular intervals.
Details
Filter your audit log reports by details such as IP address, username, event type, and time range (up to 24 hours). Capture the security and compliance data you need to include in your audit log report, such as logins, user modifications, and role changes.
Note: When multiple IP addresses are involved in the event, these IP addresses are listed in the reverse order of the request. The last proxy IP that the request went through is listed as the first IP address and so on.
Safe and sound
You'll need special privileges to use this API, which means not just anyone can access your data.
Your data, your way
Retrieve your report data in JSON if you like it structured and ready to integrate, or CSV if you love your spreadsheets.

For more information, see Export security audit log reports