Audit log

Audit logs are generated when any of the following happen: create, edit, or delete of a new user, password change​, generation of master, endpoint, or bypass release code​, deleting an endpoint​, exporting data​, changes to OTA update configurations​, changes to device control policy​ etc.

An audit trail is a security-relevant chronological set of records that provide documentary evidence of the sequence of activities that have affected at any time a specific operation, procedure, or event done by the Forcepoint ONE Data Security cloud portal administrators, analysts, and helpdesk users.

Audit log records are stored for 6 months on the management portal.​

1
Date: Specifies the date the event occurred.
2
Category: Specifies the event category.
3
Event: The event that caused the audit log generation.
4
Description: Event detailed description.
5
Admin: Cloud portal user responsible for the action.
6
Role: The role assigned to the user.
7
Download Agent: Allows for downloading the latest agent version and and navigate to the agent download page if the administrator wishes to install a previous version of the agent.
8
Export to CSV: Allows for exporting the audit log data to a CSV file.