Security Audit Log API
Learn about the Security Audit Log.
The Security Audit Log filters audit log details on-demand and exports reports in CSV or JSON formats.
Security Audit Log API Overview
- Near real-time audit log reports
- Get reports in near real-time or for any period of time in the past. This comes in handy when you need to jump on an issue. To automate these reports, set your Security Information and Event Management (SIEM tool, like Splunk) to chat with the API at regular intervals.
- Details
- Filter your audit log reports by details such as IP address, username, event type, and time range (up to 24 hours). Capture the security and compliance data you need to include in your audit log report, such as logins, user modifications, and role changes.Note: When multiple IP addresses are involved in the event, these IP addresses are listed in the reverse order of the request. The last proxy IP that the request went through is listed as the first IP address and so on.
- Safe and sound
- You'll need special privileges to use this API, which means not just anyone can access your data.
- Your data, your way
- Retrieve your report data in JSON if you like it structured and ready to integrate, or CSV if you love your spreadsheets.
For more information, see Export security audit log reports