Overview
The Admin Audit Trails report displays a list of operations that Enterprise Workloads Administrators performed on the Management Console. This report allows Cloud administrators to monitor all the operations performed by all Druva Administrators. You can enable and schedule the Admin Audit Trails report in the Subscription. The Cloud Administrators and Data Protection Officers can apply filters to create a custom report for specific operations and download it using the Admin Audit Trails page. Druva generate an empty Audit Trail Report if no data is available for a particular month.
Audit trail captures activity details, such as the name of the administrator who accessed the entity, the action performed, the resource and the entity on which the activity was performed, the timestamp of the action performed, and the updated values of the entity.
Procedure
Log in to the Druva Cloud Platform Console.
Go to the Global Navigation Panel > Reports > Hybrid Workloads . The Hybrid Workloads Reports page appears.
Click Admin Audit Trails .
The Admin Audit Trails page appears. By default, the report provides details of the resource trails that occurred in the last 30 days.
You can apply filters to the Admin Audit Trails report to fetch resource trail data details per your requirements. You can view the generated report, download it, or send it through an email to the intended recipients. You can also download data in the widgets in the CSV, CSV-Summary, and PDF formats. You can sort data in the Admin Audit trail table using single or multiple columns, and rearrange columns in the table as required.
📝 Note
The report data is refreshed every two hours. The last updated time recorded for the report is displayed next to the report title. This timestamp follows the administrator’s time zone. However, the timestamps of the data fetched in the report follow the UTC time zone.
The following table lists the fields of the Admin Audit Trail report:
Section | Field | Description |
Summary | Administrators Created | The total count of Enterprise Workloads Administrators created on the console. |
Snapshot Deletions | The count of snapshots deleted by Enterprise Workloads Administrators. | |
Disable Backup Set Count | The count of disabled backup sets on the console. | |
Password Resets | The count of passwords resets on the console. | |
Restores | The count of restores triggered on the console. | |
Audit Trails Details | Administrator | The name of the administrator who performed the action. |
Activity | The action performed by the Enterprise Workloads Administrator. For example, Create , Update , Delete , Login , Backup Now , and so on. | |
Entity Type | The type of the workload entity on which the administrator performed the action. For example, Admin Group , Backup Set , Billing Cost Code , Admin , and so on. | |
Entity Name | The name of the entity on which the administrator performed the action. | |
Organization | The name of the organization to which the entity is associated with. | |
Resource Type | The type of the resource associated with the entity. For example, Files, MS SQL, CloudCache, VMware, and so on. If an admin creates the My_config_rul e entity of type VM Auto Config Rule , the resource type of the entity is VMware . | |
Source IP | A unique address that identifies a device on the Internet, which the administrator use. | |
Updated Time | The timestamp of the action performed by the administrator. |
Actions
The following table lists the actions that you can perform on the Admin Audit Trails Report page.
Action | Description |
Add filter | Creates filters to display Admin Audit Trails Report based on the filter’s selection. |
Sort data | Sorts data in the Admin Audit Trails table using one or more columns. |
Rearrange columns | Changes the order of the columns in the Audit Trails Details table. |
Add Filter
You can apply filters to the Admin Audit Trails Report to fetch audit details as per your requirements. You can view the generated report, download it, or send it through an email to the intended recipients.
Procedure
On the Admin Audit Trails Report page, click the filter icon.
The Filters widget appears. The Filters widget displays a default filter that lists administrator activities performed in the last 30 days. You can define multiple filters based on your requirements. Druva will fetch report data based on the fields’ selection. Click the delete icon to remove filters.
Click Add Filter .
On the Filter dialog, select a field or type the field name in the Column box, and use the filter options to create a combination of filters, and click Apply .
The Admin Audit Trails Report page now displays data specific to the filter created. Similarly, you can further create more filters and apply them to display audit trail details.
For example, to fetch activity details for a specific administrator, select the Admin ID from the filter options, select the Equals option from the Is drop-down list, and select the specific administrator ID. Click Apply .
The report now displays activities performed by the selected administrator.
Sort data
Use the sort options to sort the report data in a single or multiple columns in an ascending or descending order.
Single-column Sort
Click the Sortdisabled icon to sort the data values in ascending or descending order.
Click the Sortenabled icon to disable the sorting option.
Multiple-column Sort
The Apply Multiple-column Sort option allows you to sort report data using more than one column. The report displays data based on the order of columns selected. For example, you may want to fetch details of the activities performed by a specific administrator on virtual machines. To sort data by the Administrator and Resource Type columns, simply perform the following steps:
In the Audit Trail Log table, go to the Administrator column and click the More More icon > Apply Multi-column Sort , and click the Organization Name option.
Click the sort icon in the Backup Setcolumn.
The Audit Trails Details table displays report data sorted based on the selected order of columns.
Rearrange columns
You can change the order of the columns in the Audit Trail Details table, Simply drag a column and drop it to the required position within the table.