# Admin Audit Log (Syslog) Tracking Apono system changes and gaining an understanding of administrative actions is crucial for control over change management: * Changes occur without a clear audit trail, making accountability difficult. * Lack of visibility into events can delay issue resolution and introduce security risks. The Audit Log page provides a record of administrative events in the Apono admin console, detailing who did what, when, and where, to ensure transparency and accountability. {% hint style="success" %} You can create an [audit log webhook](/docs/webhook-integrations/audit-log-webhook.md) to automatically send Apono audit log notifications to a target system whenever an audit log event occurs. {% endhint %} *** ### Page Layout The [**Audit Log**](https://app.apono.io/audit-log) page consists of an event [table](#table) and [filtering options](#filters). #### Table

\ The **Audit Log** page presents a table containing all administrative events. Each row summarizes the high-level details of an event. The columns are defined in the following table.

Column	Description
Time	Date and time the event occurred The most recent events are listed first.
Action	Event performed, such as creating, editing, or deleting an item
Actor	Name of the user who performed the action Possible Values: System (Apono) Full name and Email (User)
Target	Specific object affected by the action
Source	Location where the action originated Possible Sources: Web Application (UI) Integration Terraform (identified by the actor's personal API token API (public API identified by the actor's personal API token)

#### Filters

You can filter the list of events by one or several of the following filters.

All Time

**Relative** Follow these steps to set the relative time filter: 1. Click **All time**, a menu appears. 2. On the **Relative** tab, from the **Last** dropdown menu, select a time measure. 3. In the **Last** text field, enter a number. 4. (Optional) Click **Round to the hours|days|months** to begin the time filtering from the nearest hour, day, or month. 5. Click **Apply**. The filter turns blue and shows a summary. **Absolute** Follow these steps to set the absolute time filter: 1. Click **All time**, a menu appears. 2. On the **Absolute** tab, under **From**, select the start date from the date picker. 3. Select the start time (local system time) from the time picker. 4. Under **To**, select the end date from the date picker. 5. Select the end time (local system time) from the time picker. 6. (Optional) Click **Use UTC** to apply the Coordinated Universal Time (UTC) timezone to the start and end times instead of the local system time. 7. Click **Apply**. The filter turns blue and shows a summary.

Action

Follow these steps to filter the logs by action: 1. Click **Action**, a menu appears. 2. Select one or several actions. 3. Click the top or outside of the dropdown menu to close it. The filter turns blue and shows a summary.

Source

Follow these steps to filter the logs by source: 1. Click **Source**, a menu appears. 2. Select one or several sources. 3. Click the top or outside of the dropdown menu to close it. The filter turns blue and shows a summary.

Actor

Follow these steps to filter the logs by actor: 1. Click **Actor**, a menu appears. 2. Select one or several actors. 3. Click the top or outside of the dropdown menu to close it. The filter turns blue and shows a summary.

Target Type

Follow these steps to filter the logs by target type: 1. Click **Target Type**, a menu appears. 2. Select one or several target types. 3. Click the top or outside of the dropdown menu to close it. The filter turns blue and shows a summary.

*** ### View event information Apono allows you to see specific event changes. Follow these steps to view the details of an event: 1. On the [**Audit Log**](https://app.apono.io/audit-log) page, click the row of the event in the table. A panel opens displaying the [Event details](#event-details) and [Event changes](#event-changes). 2. Click the **X** in the top right corner to close the panel. #### Event Details The top of the panel summarizes the audit log information from the table on the **Audit Log** page.

#### Event Changes In the **Event changes** section, changes to the JSON are displayed using a Git-like diff format. The characteristics of the old and new information are compared in the following table. | Characteristic | Old Information | New Information | | ---------------------- | ------------------------------------------------------------------- | --------------- | | **Sign Prefix** | Minus sign (-) | Plus sign (+) | | **Color Highlighting** | Red | Green | | **Special Formatting** | Specific words or text fragments that have changed are highlighted. | N/A | By default, a truncated JSON with the highlighted information is shown. To see the entire JSON, you can click the **Expand** link. In the following screenshot, the user group (`attribute_value`) within this access flow and the most recent updated date (`updated_date`) are highlighted because they have been updated.

--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.apono.io/docs/audits-and-reports/audit-log.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.