The Security Audit Log filters audit log details on-demand and exports reports in convenient CSV or JSON formats. It's ideal for routine checks, immediate investigations, or when integrating real-time security event monitoring into your workflows. Think of this API as a buddy that keeps tabs on all the security-related happenings in your system. It helps pull the details of who's doing what, where, and when they did it.

Near real-time audit log reports

Get reports in near real-time or for any period of time in the past. This comes in handy when you need to jump on an issue. To automate these reports, set your Security Information and Event Management (SIEM tool, like Splunk) to chat with the API at regular intervals.

Details

Filter your audit log reports by details such as IP address, username, event type, and time range (up to 24 hours). Capture the security and compliance data you need to include in your audit log report, such as logins, user modifications, and role changes.

Note: When multiple IP addresses are involved in the event, these IP addresses are listed in the reverse order of the request. The last proxy IP that the request went through is listed as the first IP address and so on.

Safe and sound

You'll need special privileges to use this API, which means not just anyone can access your data.

Your data, your way

Retrieve your report data in JSON if you like it structured and ready to integrate, or CSV if you love your spreadsheets.