Audit logs

In order to increase the transparency and visibility of activities performed in the system, Adobe Experience Platform allows you to audit user activity for various services and capabilities in the form of “audit logs”. These logs form an audit trail that can help with troubleshooting issues on Platform, and help your business effectively comply with corporate data stewardship policies and regulatory requirements.

In a basic sense, an audit log tells who performed what action, and when. Each action recorded in a log contains metadata that indicates the action type, date and time, the email ID of the user who performed the action, and additional attributes relevant to the action type.

This document covers audit logs in Platform, including how to view and manage them in UI or API.

Event types captured by audit logs

The following table outlines which actions on which resources are recorded by audit logs:

Resource Actions
Access control policy (attribute based access control)
  • Create
  • Update
  • Delete
Account (Adobe)
  • Create
  • Update
  • Delete
Audit logs
  • Export
Class
  • Create
  • Update
  • Delete
Computed attribute
  • Create
  • Update
  • Delete
Dataset
Data types
  • Create
  • Update
  • Delete
Destination
  • Create
  • Update
  • Delete
  • Enable
  • Disable
  • Dataset Activate
  • Dataset Remove
  • Profile Activate
  • Profile Remove
Field group
  • Create
  • Update
  • Delete
Identity graph
  • View
Identity namespace
  • Create
  • Update
Merge policy
  • Create
  • Update
  • Delete
Product profile
  • Create
  • Update
  • Delete
Query
  • Execute
Query template
  • Create
  • Update
  • Delete
Role (attribute based access control)
  • Create
  • Update
  • Delete
  • Add user
  • Remove user
Sandbox
  • Create
  • Update
  • Reset
  • Delete
Scheduled query
  • Create
  • Update
  • Delete
Schema
  • Create
  • Update
  • Delete
  • Enable for Profile
Segment
  • Create
  • Delete
  • Segment Activate
  • Segment Remove
Source data flow
  • Create
  • Update
  • Delete
  • Enable
  • Disable
  • Dataset activate
  • Dataset remove
  • Profile ativate
  • Profile remove
Work order
  • Create

Access to audit logs

When the feature is enabled for your organization, audit logs are automatically collected as activity occurs. You do not need to manually enable log collection.

In order to view and export audit logs, you must have the View User Activity Log access control permission granted (found under the Data Governance category). To learn how to manage individual permissions for Platform features, please refer to the access control documentation.

Managing audit logs in the UI

You can view audit logs for different Experience Platform features within the Audits workspace in the Platform UI. The workspace shows a list of recorded logs, by default sorted from most recent to least recent.

Audit logs dashboard

Audit logs are retained for 365 days after which they will be deleted from the system. Therefore, you can only go back for a maximum period of 365 days. If you require data of more than 365 days, you should export logs at a regular cadence to meet your internal policy requirements.

Select an event from the list to view its details in the right rail.

Event details

Filter audit logs

NOTE

Since this a new feature, the data displayed only goes back to March 2022. Depending on the resource selected, earlier data may be available from January 2022.

Select the funnel icon (Filter icon) to display a list of filter controls to help narrow results. Only the last 1000 records are displayed irrespective of the various filters selected.

Filters

The following filters are available for audit events in the UI:

Filter Description
Category Use the dropdown menu to filter displayed results by category.
Action Filter by action. Currently only Create and Delete actions can be filtered.
User Enter the complete user ID (for example, johndoe@acme.com) to filter by user.
Status Filter by whether the action was allowed (completed) or denied due to lack of access control permissions.
Date Select a start date and/or an end date to define a date range to filter results by. Data can be exported with a 90-day lookback period (for example, 2021-12-15 to 2022-03-15). This can differ by event type.

To remove a filter, select the “X” on the pill icon for the filter in question, or select Clear all to remove all filters.

Clear filters

Export audit logs

To export the current list of audit logs, select Download log.

Download log

In the dialog that appears, select your preferred format (either CSV or JSON), then select Download. The browser downloads the generated file and saves it to your machine.

Select download format

Managing audit logs in the API

All actions that you can perform in the UI can also be done using API calls. See the API reference document for more information.

Managing audit logs for Adobe Admin Console

To learn how to manage audit logs for activities in Adobe Admin Console, refer to the following document.

Next steps and additional resources

This guide covered how to manage audit logs in Experience Platform. For more information on how to monitor Platform activities, see the documentation on Observability Insights and monitoring data ingestion.

To reinforce your understanding of audit logs in Experience Platform, watch the following video:

On this page