Audit Log
Audit logs are a record of actions taken by users and admins on domains on your account.
- This logs in this section cover all domains on the account.
- Alternatively, CSEG also keeps separate logs for each domain. See Domain Audit Log if you want this instead.
View Audit logs
-
Click 'Dashboard' > 'Audit log':
- Click any column heading to sort entries in ascending/descending order. The sorting option is not available for the 'Operation description' column.
Use Filters options to search particular event(s)
- Click anywhere on the 'Filters' tab to open the filters area.
- Choose the filter by which you want to search from the first drop-down, then a condition in the 2nd text box. Some filters have a third box for you to type a search string.
- Click ‘Apply Filter’.
You can filter results by the following parameters:
- Domain: Type a domain name in the text box (column 3) and select a condition in column 2.
- Login: Type a user login name in the text box (column 3) and select a condition in column 2.
- Details: Enter the log details in the text box (column 3) and select a condition in column 2.
- Date: Search event logs by date and time.
- Role: Search event logs by user roles. Select the role (column 3) and condition in column 2.
- Operation Description: Select the event name (column 3) and condition in column 2.
Click anywhere on the 'Filters' tab to close the filters area. Click the 'Refresh' button to remove filters.
You can add multiple filters to the same search by clicking .
The following table show actions which are recorded in the log report:
S.No. |
Operation Key |
Operation Description |
1 |
ACCEPT_AND_ARCHIVE_EMAIL |
Accept and archive message |
2 |
ACCEPT_BLACKLIST_REQUEST |
Accept blacklist request |
3 |
ACCEPT_BLACKLIST_REQUEST_PER_USER |
Accept request blacklist sender for user |
4 |
ACCEPT_EMAIL |
Accept message |
5 |
ACCEPT_RELEASE_REQUEST |
Accept release request |
6 |
ACCEPT_WHITELIST_REQUEST |
Accept whitelist request |
7 |
ACCEPT_WHITELIST_REQUEST_PER_USER |
Accept request whitelist sender for user |
8 |
ADD_GEOLOOKUP_RESTRICTION |
Add geolookup restriction |
9 |
ADMIN_ADD |
Add admin |
10 |
ADMIN_DELETE |
Remove admin |
11 |
ADMIN_EDIT |
Edit admin settings |
12 |
ADMIN_PASSWORD_UPDATE |
Update password for admin |
13 |
ADMIN_PERMISSIONS_ASSIGN_GROUP |
Assign admin permission group by selection |
14 |
ADMIN_PERMISSIONS_CHANGE_DEFAULT_GROUP |
Change default admin permission group |
15 |
ADMIN_PERMISSIONS_GROUP_ADD |
Add admin permission group |
16 |
ADMIN_PERMISSIONS_GROUP_DELETE |
Remove admin permission group |
17 |
ADMIN_PERMISSIONS_GROUP_UPDATE |
Update admin permission group |
18 |
ADMIN_REGENERATE_PASSWORD |
Regenerate password for admin |
19 |
ADMIN_UNLOCK |
Unlock admin |
20 |
ADMIN_VIEW_MESSAGE_CONTENT |
Admin view message content |
21 |
ARCHIVE_MESSAGE |
Archive message |
22 |
BLACKLIST_DOMAIN_RULE |
Blacklist domain rule |
23 |
BLACKLIST_RECIPIENT |
Blacklist recipient |
24 |
BLACKLIST_RECIPIENT_DOMAIN |
Blacklist all recipients of the domain |
25 |
BLACKLIST_REQUEST |
Blacklist request |
26 |
BLACKLIST_SENDER |
Blacklist sender |
27 |
BLACKLIST_SENDER_DOMAIN |
Blacklist all senders of the domain |
28 |
BLACKLIST_USER_SENDER |
Blacklist sender for user |
29 |
CANCEL_BLACKLIST_REQUEST |
Cancel blacklist request |
30 |
CANCEL_WHITELIST_REQUEST |
Cancel whitelist request |
31 |
CHANGE_FORWARD_SETTINGS_FOR_INCOMING_USER |
Change forward settings for incoming user |
32 |
DELETE_EMAIL_FROM_ARCHIVE |
Delete archived message |
33 |
DELETE_EMAIL_FROM_ARCHIVE_BY_FILTER |
Delete archived messages by filter |
34 |
DELETE_EMAIL_FROM_QUARANTINE |
Delete quarantined message |
35 |
DELETE_EMAIL_FROM_QUARANTINE_BY_FILTER |
Delete quarantined messages by filter |
36 |
DOMAIN_ADD |
Add domain |
37 |
DOMAIN_ALIASES_ADD |
Add domain alias |
38 |
DOMAIN_ALIASES_DELETE |
Remove domain alias |
39 |
DOMAIN_AUDIT_CONFIGURATION_CHANGE |
Audit configuration change |
40 |
DOMAIN_BLOCKED_EXTENSIONS_RESET_TO_DEFAULT |
Reset blocked extensions to default |
41 |
DOMAIN_BLOCKED_EXTENSIONS_UPDATE |
Update blocked extensions |
42 |
DOMAIN_DELETE |
Remove domain |
43 |
DOMAIN_DESTINATION_ROUTES_UPDATE |
Update destination routes |
44 |
DOMAIN_EMAIL_SIZE_RESTRICTION_CHANGE |
Email size restriction change |
45 |
DOMAIN_INCOMING_USER_ADD |
Add incoming user |
46 |
DOMAIN_INCOMING_USER_ALIASES_UPDATE |
Update incoming user aliases |
47 |
DOMAIN_INCOMING_USER_DELETE |
Remove incoming user |
48 |
DOMAIN_INCOMING_USER_EDIT |
Edit incoming user |
49 |
DOMAIN_INCOMING_USER_MOVE_ALIAS_TO_USER |
Move alias to incoming user |
50 |
DOMAIN_INCOMING_USER_MOVE_USER_TO_ALIAS |
Move user to alias |
51 |
DOMAIN_INCOMING_USER_PASSWORD_UPDATE |
Update password for incoming user |
52 |
DOMAIN_INCOMING_USER_REGENERATE_PASSWORD |
Regenerate password for incoming user |
53 |
DOMAIN_INCOMING_USER_UNLOCK |
Unlock incoming user |
54 |
DOMAIN_LDAP_CONFIGURATION_CHANGE |
LDAP configuration change |
55 |
DOMAIN_LOCAL_RECIPIENTS_ADD |
Add local recipient |
56 |
DOMAIN_LOCAL_RECIPIENTS_DELETE |
Remove local recipient |
57 |
DOMAIN_LOCAL_RECIPIENTS_STATE_CHANGE |
Local recipients state change |
58 |
DOMAIN_OUTGOING_USER_ADD |
Add outgoing user |
59 |
DOMAIN_OUTGOING_USER_DELETE |
Remove outgoing user |
60 |
DOMAIN_OUTGOING_USER_LOCK |
Lock outgoing user |
61 |
DOMAIN_OUTGOING_USER_PASSWORD_UPDATE |
Update password for outgoing user |
62 |
DOMAIN_OUTGOING_USER_SETTINGS_UPDATE |
Edit outgoing user |
63 |
DOMAIN_OUTGOING_USER_UNLOCK |
Unlock outgoing user |
64 |
DOMAIN_RELAY_RESTRICTIONS_ADD |
Add relay restriction |
65 |
DOMAIN_RELAY_RESTRICTIONS_DELETE |
Remove relay restriction |
66 |
DOMAIN_RELAY_RESTRICTIONS_STATE_CHANGE |
Relay restriction state change |
67 |
DOMAIN_RELAY_RESTRICTIONS_UPDATE |
Update relay restriction |
68 |
DOMAIN_REQUEST_CREATED |
Domain request created |
69 |
DOMAIN_SETTINGS_RESET_TO_DEFAULT |
Reset domain settings to default |
70 |
DOMAIN_SETTINGS_UPDATE |
Update domain settings |
71 |
DOMAIN_STATISTICS_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT |
Domain report subscription reset to default |
72 |
DOMAIN_STATISTICS_REPORT_SUBSCRIPTION_UPDATE |
Domain report subscription update |
73 |
DOMAIN_VALIDATED_BY_CODE |
Domain validated by code |
74 |
DOMAIN_VALIDATED_BY_MX |
Domain validated by MX |
75 |
DOMAIN_VALIDATED_CODE_REGENERATED |
Domain validation code regenerated |
76 |
EMAIL_QUARANTINE_ALERT |
Email quarantine alert |
77 |
ENABLE_GEOLOOKUP_RESTRICTIONS |
Enable geolookup restrictions |
78 |
ENABLE_USER |
Enable user |
79 |
FORWARD_BY_RULE_EMAIL |
Forward by rule email |
80 |
FORWARD_DOMAIN_RULE |
Forward domain rule |
81 |
FORWARD_EMAIL_LOOP_EXCEPTION |
Forward email loop exception |
82 |
FORWARD_TO |
Forward to |
83 |
FORWARDED_BY_RULE_EMAIL_IS_LOOPED |
Forwarded by rule email is looped |
84 |
IMPORT_INCOMING_USER |
Import incoming user |
85 |
LICENCE IS RETORED |
Licence is restored |
86 |
LICENCE_IS_EXPIRED |
Licence is expired |
87 |
MARK_EMAIL_AS_SPAM |
Mark message as spam |
88 |
MIGRATE_DOMAIN |
Migrate domain |
89 |
NON_HUMAN_EMAIL_TYPE |
Non human email type |
90 |
PUBLIC_EMAIL_TYPE |
Public email type |
91 |
QUARANTINE_EMAIL |
Quarantine message |
92 |
QUARANTINE_RELEASE_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT |
Quarantine release report subscription reset to default |
93 |
QUARANTINE_RELEASE_REPORT_SUBSCRIPTION_UPATE |
Quarantine release report subscription update |
94 |
QUARANTINE_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT |
Quarantine report subscription reset to default |
95 |
QUARANTINE_REPORT_SUBSCRIPTION_UPDATE |
Quarantine report subscription update |
96 |
REJECT_BLACKLIST_REQUEST |
Reject blacklist request |
97 |
REJECT_BLACKLIST_REQUEST_PER_USER |
Reject request blacklist sender for user |
98 |
REJECT_RELEASE_REQUEST |
Reject release request |
99 |
REJECT_RELEASE_REQUEST |
Reject release request |
100 |
REJECT_WHITELIST_REQUEST |
Reject whitelist request |
101 |
REJECT_WHITELIST_REQUEST_PER_USER |
Reject request whitelist sender for user |
102 |
RELEASE_EMAIL_FROM_QUARANTINE |
Release quarantined message |
103 |
REMOVE_BLACKLIST_DOMAIN_RULE |
Remove blacklist domain rule |
104 |
REMOVE_DOMAIN_BY_VALIDATION_TIMEOUT |
Remove domain by validation timeout |
105 |
REMOVE_FORWARD_DOMAIN_RULE |
Remove forward domain rule |
106 |
REMOVE_GEOLOOKUP_RESTRICTION |
Remove geolookup restriction |
107 |
REMOVE_WHITELIST_DOMAIN_RULE |
Remove whitelist domain rule |
108 |
REPLY_ON_ARCHIVED_MESSAGE |
Reply on archived message |
109 |
REPORT_SPAM_BY_FILE |
Report delivered message as spam |
110 |
REPORTED_SPAM_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT |
Reported Spam report subscription reset to default |
111 |
REPORTED_SPAM_REPORT_SUBSCRIPTION_UPDATE |
Reported Spam report subscription update |
112 |
REPORTS_AS_SPAM |
Reports archived message as a SPAM |
113 |
RESEND_EMAIL_FROM_ARCHIVE |
Resend archived message |
114 |
RESET_SPAM_DETECTION_SETTINGS_TO_DEFAULT |
Reset spam detection settings to default |
115 |
RESET_SYSTEM_NOTIFICATIONS_TEMPLATE_TO_DEFAULT |
Reset system notifications template to default |
116 |
RESET_TO_DEFAULT_BLACKLISTED_RECIPIENTS |
Reset recipients blacklist |
117 |
RESET_TO_DEFAULT_BLACKLISTED_SENDERS |
Reset senders blacklist |
118 |
RESET_TO_DEFAULT_WHITELISTED_RECIPIENTS |
Reset recipients whitelist |
119 |
RESET_TO_DEFAULT_WHITELISTED_SENDERS |
Reset senders whitelist |
120 |
SEND_INVITATION_TO_USER |
Send invitation to user |
121 |
SPAM_DETECTION_SETTINGS |
Update spam detection settings |
122 |
SPAM_DETECTION_SETTINGS_RESET_TO_DEFAULT |
Reset spam detection settings |
123 |
SYSTEM_NOTIFICATIONS_TEMPLATE_CHANGE |
System notifications template change |
124 |
TLD_DOMAIN_RULE |
TLD domain rule |
125 |
UNBLACKLIST_RECIPIENT |
Remove recipient from the blacklist |
126 |
UNBLACKLIST_SENDER |
Remove sender from the blacklist |
127 |
UNBLACKLIST_USER_SENDER |
Remove sender from the user blacklist |
128 |
UNWHITELIST_RECIPIENT |
Remove recipient from the whitelist |
129 |
UNWHITELIST_SENDER |
Remove sender from the whitelist |
130 |
UNWHITELIST_USER_SENDER |
Remove sender from the user whitelist |
131 |
UPDATE_BLACKLIST_DOMAIN_RULE |
Update blacklist domain rule |
132 |
UPDATE_FORWARD_DOMAIN_RULE |
Update forward domain rule |
133 |
UPDATE_USERS_AUTO_IMPORT_SETTINGS |
Update users auto-import settings |
134 |
UPDATE_WHITELIST_DOMAIN_RULE |
Update whitelist domain rule |
135 |
USER_BLACKLIST_REQUEST_PER_USER |
Request blacklist sender for user |
136 |
USER_CANCEL_BLACKLIST_REQUEST_PER_USER |
Cancel request blacklist sender for user |
137 |
USER_CANCEL_RELEASE_REQUEST |
Cancel release request |
138 |
USER_CANCEL_WHITELIST_REQUEST_PER_USER |
Cancel request whitelist sender for user |
139 |
USER_PERMISSIONS_ASSIGN_GROUP |
Assign user permission group by selection |
140 |
USER_PERMISSIONS_CHANGE_DEFAULT_GROUP |
Change default user permission group |
141 |
USER_PERMISSIONS_GROUP_ADD |
Add user permission group |
142 |
USER_PERMISSIONS_GROUP_DELETE |
Remove user permission group |
143 |
USER_PERMISSIONS_GROUP_UPDATE |
Update user permission group |
144 |
USER_RELEASE_REQUEST |
Release request |
145 |
USER_WHITELIST_REQUEST_PER_USER |
Request whitelist sender for user |
146 |
USERS_AUTO-IMPORT_REPORT_SUBSCRIPTION_RESET_TO_DEFAULT |
Users auto-import report subscription reset to default |
147 |
USERS_AUTO-IMPORT_REPORT_SUBSCRIPTION_UPDATE |
Users auto-import report subscription update |
148 |
WHITELIST_DOMAIN_RULE |
Whitelist domain rule |
149 |
WHITELIST_RECIPIENT |
Whitelist recipient |
150 |
WHITELIST_RECIPIENT_DOMAIN |
Whitelist all recipients of the domain |
151 |
WHITELIST_REQUEST |
Whitelist request |
152 |
WHITELIST_SENDER |
Whitelist sender |
153 |
WHITELIST_SENDER_DOMAIN |
Whitelist all senders of the domain |
154 |
WHITELIST_USER_SENDER |
Whitelist sender for user |
Export Log Report to CSV
The log report can be exported to a comma separated value (CSV) file and is limited to 10,000 entries per file. You will see an error if the entries exceed this value. The exported file sorts entries in the same order as they are sorted in the interface.
- Click
the 'Export to CSV by filter' button. The 'File Download' will open:
- Click 'Open with' or 'Save File' to view / save the file with an appropriate application to your computer
- Сlick 'OK'
The values in the log report will be separated by commas and this file can be opened with Excel or Openoffice Calc for easy analysis.