# Activity

If your organization uses a multi-cloud strategy, managing and auditing user activity can be challenging.

The **Activity** page consolidates all user activity into a single table that displays every access request controlled by Apono. From this page, you can easily manage access and activity:

* Filter activity according to flexible dimensions, like grantee, integration, and status
* View access request details
* Revoke unwanted access

In addition to the actions above, you can also [create reports](https://docs.apono.io/docs/audits-and-reports/activity-overview/create-reports) to audit activity.

{% hint style="success" %}
You can also [list activity](https://docs.apono.io/api-reference/apono/activity) using the Apono public API.
{% endhint %}

***

### Filter activity

<figure><img src="https://1094436629-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Fv6MBfUGvblSdAz31yJXm%2Fuploads%2Fgit-blob-4b47f57b7aa6b1fd692bbe10f8740cf897a2213d%2Fobo-activity-filter-reqs.png?alt=media" alt="" width="563"><figcaption><p><em>Filtering on the Activity page</em></p></figcaption></figure>

The Activity page allows for advanced filtering to refine the data displayed in the table. You can filter the activity log by one or several of the following filters.

{% hint style="success" %}
At any point while filtering, you can click **Clear Filters** to reset the table to its default view.
{% endhint %}

Follow these steps to filter the activity list:

1. On the [**Activity**](https://app.apono.io/activity) tab, set the date range. All activities are listed by default.

<details>

<summary>All Time</summary>

**Relative**

Follow these steps to set a relative date range:

1. Click **All Time**, the date range settings appear.
2. On the **Relative** tab, from the **Last** dropdown menu, select a time measure.
3. In the **Last** text field, enter a number.
4. (Optional) Click **Round to the hours|days|months** to begin the time filtering from the nearest hour, day, or month.
5. Click **Apply**. The filter turns blue and shows a summary.
6. Click the top or outside of the dropdown menu to close it.

**Absolute**

Follow these steps to set an absolute date range:

1. Click **All Time**, the date range settings appear.
2. On the **Absolute** tab, under **From**, select a start date:
   * Select the start date from the date picker.
   * Select the start time (local system time) from the time picker.
3. Under **To**, select the end date:
   * Select the end date from the date picker.
   * Select the end time (local system time) from the time picker.
4. (Optional) Click **Use UTC** to apply the Coordinated Universal Time (UTC) timezone to the start and end times instead of the local system time.
5. Click **Apply**. The filter turns blue and shows a summary.
6. Click the top or outside of the dropdown menu to close it.

</details>

2. Click a dropdown menu.

{% hint style="success" %}
To access additional filters, click **More Filters** and choose a filter.
{% endhint %}

3. (Optional) In the **Search** field, enter a value to filter the options.
4. Select one or more options. The list of principals will be filtered.
5. Click the top or outside of the dropdown menu to close it. The filter turns blue and shows a summary.
6. (Optional) Repeat steps **2-5** to add more criteria to filter the activity list.

***

### View access request details

<figure><img src="https://1094436629-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Fv6MBfUGvblSdAz31yJXm%2Fuploads%2Fgit-blob-9b6b9db553cf3633fa6b80446ed913c2c4c36619%2Fobo-view-reqs.png?alt=media" alt="" width="375"><figcaption><p>Access request details panel</p></figcaption></figure>

Follow these steps to view the details of an access request:

1. [Filter your activity](#filter-activity). Only access requests matching the filters appear.
2. Select an access request. The **Access request details** panel appears.\
   \
   From here, you can view various access details depending on the resource or integration associated with the access request. Access details can include the fields below.

<table><thead><tr><th width="238">Field</th><th>Description</th></tr></thead><tbody><tr><td><strong>Request ID</strong></td><td>Unique identifier of the access request</td></tr><tr><td><strong>Creation date</strong></td><td>Date when the user requested access</td></tr><tr><td><strong>Access flow</strong></td><td>Name of the access flow that controls access to the requested resource or integration</td></tr><tr><td><strong>Access type</strong></td><td>Means by which the access flow grants access (<strong>Self Serve</strong> or <strong>Automatic</strong>)</td></tr><tr><td><strong>Grantee</strong></td><td><p>Name and identifier of the user or entity that requested access</p><p>This may be a name with an email address (human identity) or a name with an ID (machine identity).</p><p>If the grantee and the requestor are different, the request was made on behalf of the grantee.</p></td></tr><tr><td><strong>Requestor</strong></td><td>Name and email address of the user who submitted the access request</td></tr><tr><td><strong>Duration</strong></td><td>Requested duration of access</td></tr><tr><td><strong>Extended</strong></td><td>Number of times the length of access to the requested resources has been increased</td></tr><tr><td><strong>Justification</strong></td><td>Reason for access</td></tr><tr><td><strong>Bundle</strong></td><td><p>Name of the group containing a combination of several integrations, roles, resources, or access scopes</p><p>For more information about the bundle, click the bundle name.</p></td></tr><tr><td><strong>Status</strong></td><td>Current state of the request</td></tr></tbody></table>

3. [View resources](#view-resources).
4. [View the timeline](#view-the-timeline).
5. Click the **X** in the top right corner to close the panel.

#### View resources

Follow these steps to view the resources associated with an access request:

1. Under the **Access request details**, click **Resources**.
2. Click a status tab to view your resources.

<table><thead><tr><th width="238">Tab</th><th>Description</th></tr></thead><tbody><tr><td><strong>Granted</strong></td><td><p>Resources to which access has been granted<br><br>Follow these steps to view these resources:</p><ol><li>Click the <strong>Granted</strong> tab. A list of resources appears.</li><li>In your desired resource tile, click the down caret ( <strong>˅</strong> ). The resource details expand.</li></ol><p>From here you can view the resource-specific information:</p><ul><li>Resource name</li><li>Resource type</li><li>Permissions</li><li>Date when access was granted</li></ul></td></tr><tr><td><strong>Revoked</strong></td><td><p>Resources to which access has been revoked</p><p>Follow these steps to view these resources:</p><ol><li>Click the <strong>Revoked</strong> tab. A list of resources appears.</li><li>In your desired resource tile, click the down caret ( <strong>˅</strong> ). The resource details expand.</li></ol><p>From here you can view the resource-specific information:</p><ul><li>Resource name</li><li>Resource type</li><li>Permissions</li><li>Date when access was revoked</li></ul></td></tr><tr><td><strong>Errors</strong></td><td><p>Resources for which an access error has occurred<br></p><p>Follow these steps to view these resources:</p><ol><li>Click the <strong>Errors</strong> tab. A list of resources appears.</li><li>In your desired resource tile, click the down caret ( <strong>˅</strong> ). The resource details expand.</li></ol><p>From here you can view the resource-specific information:</p><ul><li>Resource name</li><li>Resource type</li><li>Permissions</li><li>Date when the error occurred</li><li>Reason for error</li></ul></td></tr></tbody></table>

#### View the timeline

Follow this step to view information related to the time and period of the access request:

1. Under the **Access request details**, click **Timeline**. A timeline of the access request appears.

From this timeline, you can see the exact date and time when the following occurred:

* Access requested
* Access granted, extended, or revoked
* Credentials rotated
* An error occurred

***

### Revoke all access

On the Activity page, you can revoke all access to resources synced with Apono.

Revoking all access allows you to quickly and securely respond to scenarios like employee offboarding, compromised accounts, or security breaches, ensuring sensitive resources are protected from unauthorized access.

Follow these steps to revoke all access:

1. On the [**Activity**](https://app.apono.io/activity) page, click **Revoke All**. A warning popup appears.
2. Click **Yes**. All access across your user activity is revoked.