Comodo Help
Find the desired product help
Xcitium Secure Email Gateway MSP

Xcitium Secure Email Gateway MSP

Admin Guide

English

Print Help Download Help
Audit Log
  • Introduction To Xcitium Secure Email Gateway - MSP
    • Purchase Licenses
    • License Information
  • Get Started
  • Login To The Admin Console
  • The Admin Console
  • The Dashboard Area
  • Domain Management
    • Add A Domain
    • Delete Domains
    • Edit Domains
    • Validate Domains
    • Manage A Domain
      • Domain Dashboard
      • Incoming
        • Quarantine
        • Manage Archived Mails
        • Incoming Spam Detection Settings
        • Report Spam
        • Delivery Queue
        • Destination Routes
        • Local Recipients
        • Clear Incoming Cache
        • Log Search
        • Domain Aliases
        • Domain Settings
        • Manage Report Subscriptions For Selected Domain
        • Relay Restrictions
        • Geolocation Restrictions
        • SPF Control Settings
      • Outgoing
        • Clear Outgoing Cache
        • Log Search
        • Users
        • Office 365 Activation
      • Email Management
        • Email Size Restriction
        • Blocked Extensions
        • Released Requests
        • Blacklisted Requests
        • White-listed Requests
      • Domain Audit Log
        • Audit Log Configuration
        • View Domain Log
      • Domain Rules
        • Rules
        • TLD And GTLD Rules
        • Recipient Whitelist
        • Sender Whitelist
        • Recipient Blacklist
        • Sender Blacklist
        • Whitelist Senders Per User
        • Blacklist Senders Per User
      • Account Management
        • User Account Management
        • Manage User Auto-import
        • View User History
        • Import Users From LDAP
          • LDAP Import Configuration
          • LDAP Import Confirmation List
          • LDAP Import Ignore List
  • Audit Log
  • Administrator Account Management
    • Administrators
    • User Groups & Permissions
    • Admin Groups & Permissions
    • My Comodo Account
    • My Profile
    • Users History
  • Customer Management
    • End User License And Subscriber Agreements
    • View License Information
    • Manage Report Subscriptions
    • Notification Email Settings
  • CSEG Reports - An Overview
    • Quarantine Report
    • Domain Statistics Report
    • Auto-Imported Users Report
    • Quarantine Release Report
    • Reported Spam Report
  • Appendix 1 - CSEG Error Codes
  • Appendix 3 - Troubleshooting LDAP
  • Appendix 4 - Useful Links
  • About Xcitium Security Solutions

Audit Log


Audit logs are a record of actions taken by users and admins on domains on your account.

  • This logs in this section cover all domains on the account.
  • Alternatively, CSEG also keeps separate logs for each domain. See Domain Audit Log if you want this instead.

View Audit logs

  • Click 'Dashboard' > 'Audit log':



 

  • Click any column heading to sort entries in ascending/descending order. The sorting option is not available for the 'Operation description' column.


Use Filters options to search particular event(s)

  • Click anywhere on the 'Filters' tab to open the filters area.




  • Choose the filter by which you want to search from the first drop-down, then a condition in the 2nd text box. Some filters have a third box for you to type a search string.
  • Click ‘Apply Filter’.

You can filter results by the following parameters:

  • Domain: Type a domain name in the text box (column 3) and select a condition in column 2.
  • Login: Type a user login name in the text box (column 3) and select a condition in column 2.
  • Details: Enter the log details in the text box (column 3) and select a condition in column 2.
  • Date: Search event logs by date and time.
  • Role: Search event logs by user roles. Select the role (column 3) and condition in column 2.
  • Operation Description: Select the event name (column 3) and condition in column 2.

Click anywhere on the 'Filters' tab to close the filters area. Click the 'Refresh' button to remove filters.

You can add multiple filters to the same search by clicking .


 

The following table show actions which are recorded in the log report:


S.No.

Operation Key

Operation Description

1

ACCEPT_AND_ARCHIVE_EMAIL

Accept and archive message

2

ACCEPT_BLACKLIST_REQUEST

Accept blacklist request

3

ACCEPT_BLACKLIST_REQUEST_PER_USER

Accept request blacklist sender for user

4

ACCEPT_EMAIL

Accept message

5

ACCEPT_RELEASE_REQUEST

Accept release request

6

ACCEPT_WHITELIST_REQUEST

Accept whitelist request

7

ACCEPT_WHITELIST_REQUEST_PER_USER

Accept request whitelist sender for user

8

ADD_GEOLOOKUP_RESTRICTION

Add geolookup restriction

9

ADMIN_ADD

Add admin

10

ADMIN_DELETE

Remove admin

11

ADMIN_EDIT

Edit admin settings

12

ADMIN_PASSWORD_UPDATE

Update password for admin

13

ADMIN_PERMISSIONS_ASSIGN_GROUP

Assign admin permission group by selection

14

ADMIN_PERMISSIONS_CHANGE_DEFAULT_GROUP

Change default admin permission group

15

ADMIN_PERMISSIONS_GROUP_ADD

Add admin permission group

16

ADMIN_PERMISSIONS_GROUP_DELETE

Remove admin permission group

17

ADMIN_PERMISSIONS_GROUP_UPDATE

Update admin permission group

18

ADMIN_REGENERATE_PASSWORD

Regenerate password for admin

19

ADMIN_UNLOCK

Unlock admin

20

ADMIN_VIEW_MESSAGE_CONTENT

Admin view message content

21

ARCHIVE_MESSAGE

Archive message

22

BLACKLIST_DOMAIN_RULE

Blacklist domain rule

23

BLACKLIST_RECIPIENT

Blacklist recipient

24

BLACKLIST_RECIPIENT_DOMAIN

Blacklist all recipients of the domain

25

BLACKLIST_REQUEST

Blacklist request

26

BLACKLIST_SENDER

Blacklist sender

27

BLACKLIST_SENDER_DOMAIN

Blacklist all senders of the domain

28

BLACKLIST_USER_SENDER

Blacklist sender for user

29

CANCEL_BLACKLIST_REQUEST

Cancel blacklist request

30

CANCEL_WHITELIST_REQUEST

Cancel whitelist request

31

CHANGE_FORWARD_SETTINGS_FOR_INCOMING_USER

Change forward settings for incoming user

32

DELETE_EMAIL_FROM_ARCHIVE

Delete archived message

33

DELETE_EMAIL_FROM_ARCHIVE_BY_FILTER

Delete archived messages by filter

34

DELETE_EMAIL_FROM_QUARANTINE

Delete quarantined message

35

DELETE_EMAIL_FROM_QUARANTINE_BY_FILTER

Delete quarantined messages by filter

36

DOMAIN_ADD

Add domain

37

DOMAIN_ALIASES_ADD

Add domain alias

38

DOMAIN_ALIASES_DELETE

Remove domain alias

39

DOMAIN_AUDIT_CONFIGURATION_CHANGE

Audit configuration change

40

DOMAIN_BLOCKED_EXTENSIONS_RESET_TO_DEFAULT

Reset blocked extensions to default

41

DOMAIN_BLOCKED_EXTENSIONS_UPDATE

Update blocked extensions

42

DOMAIN_DELETE

Remove domain

43

DOMAIN_DESTINATION_ROUTES_UPDATE

Update destination routes

44

DOMAIN_EMAIL_SIZE_RESTRICTION_CHANGE

Email size restriction change

45

DOMAIN_INCOMING_USER_ADD

Add incoming user

46

DOMAIN_INCOMING_USER_ALIASES_UPDATE

Update incoming user aliases

47

DOMAIN_INCOMING_USER_DELETE

Remove incoming user

48

DOMAIN_INCOMING_USER_EDIT

Edit incoming user

49

DOMAIN_INCOMING_USER_MOVE_ALIAS_TO_USER

Move alias to incoming user

50

DOMAIN_INCOMING_USER_MOVE_USER_TO_ALIAS

Move user to alias

51

DOMAIN_INCOMING_USER_PASSWORD_UPDATE

Update password for incoming user

52

DOMAIN_INCOMING_USER_REGENERATE_PASSWORD

Regenerate password for incoming user

53

DOMAIN_INCOMING_USER_UNLOCK

Unlock incoming user

54

DOMAIN_LDAP_CONFIGURATION_CHANGE

LDAP configuration change

55

DOMAIN_LOCAL_RECIPIENTS_ADD

Add local recipient

56

DOMAIN_LOCAL_RECIPIENTS_DELETE

Remove local recipient

57

DOMAIN_LOCAL_RECIPIENTS_STATE_CHANGE

Local recipients state change

58

DOMAIN_OUTGOING_USER_ADD

Add outgoing user

59

DOMAIN_OUTGOING_USER_DELETE

Remove outgoing user

60

DOMAIN_OUTGOING_USER_LOCK

Lock outgoing user

61

DOMAIN_OUTGOING_USER_PASSWORD_UPDATE

Update password for outgoing user

62

DOMAIN_OUTGOING_USER_SETTINGS_UPDATE

Edit outgoing user

63

DOMAIN_OUTGOING_USER_UNLOCK

Unlock outgoing user

64

DOMAIN_RELAY_RESTRICTIONS_ADD

Add relay restriction

65

DOMAIN_RELAY_RESTRICTIONS_DELETE

Remove relay restriction

66

DOMAIN_RELAY_RESTRICTIONS_STATE_CHANGE

Relay restriction state change

67

DOMAIN_RELAY_RESTRICTIONS_UPDATE

Update relay restriction

68

DOMAIN_REQUEST_CREATED

Domain request created

69

DOMAIN_SETTINGS_RESET_TO_DEFAULT

Reset domain settings to default

70

DOMAIN_SETTINGS_UPDATE

Update domain settings

71

DOMAIN_STATISTICS_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT

Domain report subscription reset to default

72

DOMAIN_STATISTICS_REPORT_SUBSCRIPTION_UPDATE

Domain report subscription update

73

DOMAIN_VALIDATED_BY_CODE

Domain validated by code

74

DOMAIN_VALIDATED_BY_MX

Domain validated by MX

75

DOMAIN_VALIDATED_CODE_REGENERATED

Domain validation code regenerated

76

EMAIL_QUARANTINE_ALERT

Email quarantine alert

77

ENABLE_GEOLOOKUP_RESTRICTIONS

Enable geolookup restrictions

78

ENABLE_USER

Enable user

79

FORWARD_BY_RULE_EMAIL

Forward by rule email

80

FORWARD_DOMAIN_RULE

Forward domain rule

81

FORWARD_EMAIL_LOOP_EXCEPTION

Forward email loop exception

82

FORWARD_TO

Forward to

83

FORWARDED_BY_RULE_EMAIL_IS_LOOPED

Forwarded by rule email is looped

84

IMPORT_INCOMING_USER

Import incoming user

85

LICENCE IS RETORED

Licence is restored

86

LICENCE_IS_EXPIRED

Licence is expired

87

MARK_EMAIL_AS_SPAM

Mark message as spam

88

MIGRATE_DOMAIN

Migrate domain

89

NON_HUMAN_EMAIL_TYPE

Non human email type

90

PUBLIC_EMAIL_TYPE

Public email type

91

QUARANTINE_EMAIL

Quarantine message

92

QUARANTINE_RELEASE_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT

Quarantine release report subscription reset to default

93

QUARANTINE_RELEASE_REPORT_SUBSCRIPTION_UPATE

Quarantine release report subscription update

94

QUARANTINE_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT

Quarantine report subscription reset to default

95

QUARANTINE_REPORT_SUBSCRIPTION_UPDATE

Quarantine report subscription update

96

REJECT_BLACKLIST_REQUEST

Reject blacklist request

97

REJECT_BLACKLIST_REQUEST_PER_USER

Reject request blacklist sender for user

98

REJECT_RELEASE_REQUEST

Reject release request

99

REJECT_RELEASE_REQUEST

Reject release request

100

REJECT_WHITELIST_REQUEST

Reject whitelist request

101

REJECT_WHITELIST_REQUEST_PER_USER

Reject request whitelist sender for user

102

RELEASE_EMAIL_FROM_QUARANTINE

Release quarantined message

103

REMOVE_BLACKLIST_DOMAIN_RULE

Remove blacklist domain rule

104

REMOVE_DOMAIN_BY_VALIDATION_TIMEOUT

Remove domain by validation timeout

105

REMOVE_FORWARD_DOMAIN_RULE

Remove forward domain rule

106

REMOVE_GEOLOOKUP_RESTRICTION

Remove geolookup restriction

107

REMOVE_WHITELIST_DOMAIN_RULE

Remove whitelist domain rule

108

REPLY_ON_ARCHIVED_MESSAGE

Reply on archived message

109

REPORT_SPAM_BY_FILE

Report delivered message as spam

110

REPORTED_SPAM_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT

Reported Spam report subscription reset to default

111

REPORTED_SPAM_REPORT_SUBSCRIPTION_UPDATE

Reported Spam report subscription update

112

REPORTS_AS_SPAM

Reports archived message as a SPAM

113

RESEND_EMAIL_FROM_ARCHIVE

Resend archived message

114

RESET_SPAM_DETECTION_SETTINGS_TO_DEFAULT

Reset spam detection settings to default

115

RESET_SYSTEM_NOTIFICATIONS_TEMPLATE_TO_DEFAULT

Reset system notifications template to default

116

RESET_TO_DEFAULT_BLACKLISTED_RECIPIENTS

Reset recipients blacklist

117

RESET_TO_DEFAULT_BLACKLISTED_SENDERS

Reset senders blacklist

118

RESET_TO_DEFAULT_WHITELISTED_RECIPIENTS

Reset recipients whitelist

119

RESET_TO_DEFAULT_WHITELISTED_SENDERS

Reset senders whitelist

120

SEND_INVITATION_TO_USER

Send invitation to user

121

SPAM_DETECTION_SETTINGS

Update spam detection settings

122

SPAM_DETECTION_SETTINGS_RESET_TO_DEFAULT

Reset spam detection settings

123

SYSTEM_NOTIFICATIONS_TEMPLATE_CHANGE

System notifications template change

124

TLD_DOMAIN_RULE

TLD domain rule

125

UNBLACKLIST_RECIPIENT

Remove recipient from the blacklist

126

UNBLACKLIST_SENDER

Remove sender from the blacklist

127

UNBLACKLIST_USER_SENDER

Remove sender from the user blacklist

128

UNWHITELIST_RECIPIENT

Remove recipient from the whitelist

129

UNWHITELIST_SENDER

Remove sender from the whitelist

130

UNWHITELIST_USER_SENDER

Remove sender from the user whitelist

131

UPDATE_BLACKLIST_DOMAIN_RULE

Update blacklist domain rule

132

UPDATE_FORWARD_DOMAIN_RULE

Update forward domain rule

133

UPDATE_USERS_AUTO_IMPORT_SETTINGS

Update users auto-import settings

134

UPDATE_WHITELIST_DOMAIN_RULE

Update whitelist domain rule

135

USER_BLACKLIST_REQUEST_PER_USER

Request blacklist sender for user

136

USER_CANCEL_BLACKLIST_REQUEST_PER_USER

Cancel request blacklist sender for user

137

USER_CANCEL_RELEASE_REQUEST

Cancel release request

138

USER_CANCEL_WHITELIST_REQUEST_PER_USER

Cancel request whitelist sender for user

139

USER_PERMISSIONS_ASSIGN_GROUP

Assign user permission group by selection

140

USER_PERMISSIONS_CHANGE_DEFAULT_GROUP

Change default user permission group

141

USER_PERMISSIONS_GROUP_ADD

Add user permission group

142

USER_PERMISSIONS_GROUP_DELETE

Remove user permission group

143

USER_PERMISSIONS_GROUP_UPDATE

Update user permission group

144

USER_RELEASE_REQUEST

Release request

145

USER_WHITELIST_REQUEST_PER_USER

Request whitelist sender for user

146

USERS_AUTO-IMPORT_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT

Users auto-import report subscription reset to default

147

USERS_AUTO-IMPORT_REPORT_SUBSCRIPTION_UPDATE

Users auto-import report subscription update

148

WHITELIST_DOMAIN_RULE

Whitelist domain rule

149

WHITELIST_RECIPIENT

Whitelist recipient

150

WHITELIST_RECIPIENT_DOMAIN

Whitelist all recipients of the domain

151

WHITELIST_REQUEST

Whitelist request

152

WHITELIST_SENDER

Whitelist sender

153

WHITELIST_SENDER_DOMAIN

Whitelist all senders of the domain

154

WHITELIST_USER_SENDER

Whitelist sender for user


Export Log Report to CSV


 

The log report can be exported to a comma separated value (CSV) file and is limited to 10,000 entries per file. You will see an error if the entries exceed this value. The exported file sorts entries in the same order as they are sorted in the interface.

  • Click the 'Export to CSV by filter' button. The 'File Download' will open:
 


 

  • Click 'Open with' or 'Save File' to view / save the file with an appropriate application to your computer
  • Сlick 'OK'

The values in the log report will be separated by commas and this file can be opened with Excel or Openoffice Calc for easy analysis.

Our Products
  • Free Antivirus
  • Free Internet Security
  • Website Malware Removal
  • Free Anti-Malware
  • Anti-Spam (Free Trial)
  • Windows Antivirus
  • Antivirus for Windows 7
  • Antivirus for Windows 8
  • Antivirus for Windows 10
  • Antivirus for MAC
  • Antivirus for Linux
  • Free Endpoint Security
  • Free ModSecurity
  • Free RMM
  • Free Website Malware Scanner
  • Free Device Manager for Android
  • Free Demo
  • Network Security
  • Endpoint Protection
  • Antivirus for Android
  • Comodo Antivirus
  • Wordpress Security
Cheap CDN
  • Bootstrap CDN
  • Semantic UI CDN
  • Jquery CDN
  • CDN Plans
  • CDN
  • Free CDN
Enterprise
  • Patch Management Software
  • Patch Manager
  • Service Desk
  • Website Down
  • Endpoint Protection Solutions
  • Website Security Check
  • Remote Monitoring and Management
  • Website Security
  • Device Manager
  • ITSM
  • CRM
  • MSP
  • Android Device Manager
  • MDR Services
  • Ransomware Prevention
  • Managed IT Support Services
  • Free EDR
Free SSL Certificate
Support Partners Terms and Conditions Privacy Policy

© Comodo Group, Inc. 2024. All rights reserved.