Help Center Administration Managing Audit Logs

Contents

ContentsHide

Customer Portal Online Help
- About the Documentation
- Overview
  - Introduction
- Dashboard
  - Using the Dashboard
    - About the Customer Portal Dashboard
  - Managing Objects
- Monitoring the Customer Portal
  - Monitoring Security Alerts and Alarms
    - About the Monitor Overview Page
    - Alerts Overview
    - About the Generated Alerts Page
    - About the Alert Definitions Page
    - Managing Security Alerts Definitions
    - Creating Security Alert Definitions
    - Editing, Cloning, and Deleting Security Alert Definitions
    - About the Alarms Page
  - Monitoring Security and Device Events
  - Monitoring SD-WAN Events
    - SD-WAN Events Overview
    - About the SD-WAN Events Page
  - Monitoring Applications
  - Monitoring Threats
    - About the Threats Map (Live) Page
  - Monitoring Jobs
    - About the Jobs Page
    - Editing and Deleting Scheduled Jobs
      - Editing Scheduled Jobs
      - Deleting Scheduled Jobs
    - Viewing Job Details
    - Retrying a Failed Job on Devices
- Managing Resources
  - Managing Devices
    - Multidepartment CPE Device Support
    - About the Devices Page
    - Performing Return Material Authorization (RMA) for a Single-CPE Device
    - Performing Return Material Authorization (RMA) for Dual-CPE Devices
      - Performing RMA for an NFX Cluster
      - Performing RMA for an SRX Cluster
    - Granting RMA for a Device
    - Managing a Single CPE Device
    - Rebooting a CPE Device
  - Managing Device Images
- Managing Configuration
  - Configuring Network Services in a Distributed Deployment
  - Managing Firewall Policies
    - Firewall Policy Overview
    - About the Firewall Policy Page
    - Creating Firewall Policy Intents
    - Editing, Cloning, and Deleting Firewall Policy Intents
    - Selecting Firewall Source
    - Selecting Firewall Destination
    - Firewall Policy Examples
    - Firewall Policy Schedules Overview
    - About the Firewall Policy Schedules Page
    - Creating Schedules
    - Editing, Cloning, and Deleting Schedules
  - Unified Threat Management
    - UTM Overview
    - Configuring UTM Settings
    - About the UTM Profiles Page
    - Creating UTM Profiles
    - Editing, Cloning, and Deleting UTM Profiles
      - Editing UTM Profiles
      - Cloning UTM Profiles
      - Deleting UTM Profiles
    - About the Web Filtering Profiles Page
    - Creating Web Filtering Profiles
    - Editing, Cloning, and Deleting Web Filtering Profiles
      - Editing Web Filtering Profiles
      - Cloning Web Filtering Profiles
      - Deleting Web Filtering Profiles
    - About the Antivirus Profiles Page
    - Creating Antivirus Profiles
    - Editing, Cloning, and Deleting Antivirus Profiles
      - Editing Antivirus Profiles
      - Cloning Antivirus Profiles
      - Deleting Antivirus Profiles
    - About the Antispam Profiles Page
    - Creating Antispam Profiles
    - Editing, Cloning, and Deleting Antispam Profiles
      - Editing Antispam Profiles
      - Cloning Antispam Profiles
      - Deleting Antispam Profiles
    - About the Content Filtering Profiles Page
    - Creating Content Filtering Profiles
    - Editing, Cloning, and Deleting Content Filtering Profiles
      - Editing Content Filtering Profiles
      - Cloning Content Filtering Profiles
      - Deleting Content Filtering Profiles
    - About the URL Patterns Page
    - Creating URL Patterns
    - Editing, Cloning, and Deleting URL Patterns
      - Editing URL Patterns
      - Cloning URL Patterns
      - Deleting URL Patterns
    - About the URL Categories Page
    - Creating URL Categories
    - Editing, Cloning, and Deleting URL Categories
      - Editing URL Categories
      - Cloning URL Categories
      - Deleting URL Categories
  - Managing SD-WAN
    - SLA Profiles and SD-WAN Policies Overview
    - About the SD-WAN Policy Page
    - Creating SD-WAN Policy Intents
    - Editing and Deleting SD-WAN Policy Intents
      - Editing SD-WAN Policy Intents
      - Deleting SD-WAN Policy Intents
    - About the Application SLA Profiles Page
    - Creating SLA Profiles
    - Editing and Deleting SLA Profiles
      - Editing an SLA Profile
      - Deleting SLA Profiles
  - Managing NAT Policies
    - NAT Policies Overview
    - About the NAT Policies Page
    - Creating NAT Policies
    - Editing and Deleting NAT Policies
      - Editing NAT Policies
      - Deleting NAT Policies
    - About the Single NAT Policy Page
    - Creating NAT Policy Rules
    - Editing, Cloning, and Deleting NAT Policy Rules
    - Deploying NAT Policy Rules
    - Selecting NAT Source
    - Selecting NAT Destination
    - NAT Pools Overview
    - About the NAT Pools Page
    - Creating NAT Pools
    - Editing, Cloning, and Deleting NAT Pools
  - Managing SSL Proxies
    - SSL Forward Proxy Overview
    - About the SSL Proxy Policy Page
    - Creating SSL Proxy Policy Intents
    - Editing, Cloning, and Deleting SSL Proxy Policy Intents
    - Understanding How SSL Proxy Policy Intents Are Applied
    - About the SSL Proxy Profiles Page
    - Creating SSL Forward Proxy Profiles
    - Editing, Cloning, and Deleting SSL Forward Proxy Profiles
    - Configuring and Deploying an SSL Forward Proxy Policy
  - Managing Shared Objects
    - Addresses and Address Groups Overview
    - About the Addresses Page
    - Creating Addresses or Address Groups
    - Editing, Cloning, and Deleting Addresses and Address Groups
    - Services and Service Groups Overview
    - About the Services Page
    - Creating Services and Service Groups
    - Creating Protocols
    - Editing and Deleting Protocols
      - Editing Protocols
      - Deleting Protocols
    - Editing, Cloning, and Deleting Services and Service Groups
    - Application Signatures Overview
    - About the Application Signatures Page
    - Creating Application Signature Groups
    - Editing, Cloning, and Deleting Application Signature Groups
    - About the Departments Page
    - Creating a Department
    - Modifying a Department
    - Deleting a Department
  - Managing Deployments
- Managing Sites and Site Groups
  - Managing Sites
  - Managing Site Groups
    - About the Site Groups Page
    - Creating Site Groups
- Viewing Reports
  - Security Reports
    - Reports Overview
    - About the Security Report Definitions Page
    - Performing Different Actions on Reports
    - About the Security Generated Reports Page
    - Creating Log Report Definition
    - Creating Bandwidth Report Definition
    - Editing and Deleting Log Report Definitions
      - Editing the Log Report Definition
      - Deleting Log Report Definitions
    - Editing and Deleting Bandwidth Report Definitions
      - Editing the Bandwidth Report Definition
      - Deleting Bandwidth Report Definitions
  - SD-WAN Reports
    - About the SD-WAN Report Definitions Page
    - Editing and Deleting SD-WAN Report Definitions
      - Editing the SD-WAN Report Definition
      - Deleting SD-WAN Report Definitions
    - Creating SD-WAN Tenant Performance Report Definition
    - Creating SD-WAN Site Performance Report Definition
    - About the SD-WAN Generated Reports Page
- Administration
  - Managing Tenant Users
    - Role-Based Access Control Overview
    - About the Tenant Users Page
    - Adding Tenant Users
    - Editing and Deleting Tenant Users
      - Editing Tenant Users
      - Deleting Tenant Users
    - Resetting the Password for Tenant Users
  - Managing Audit Logs
  - Managing Tenant User Roles
    - Roles Overview
    - About the Tenant Roles Page
    - Adding User-Defined Roles for Tenant Users
    - Editing, Cloning, and Deleting User-Defined Roles for Tenant Users
    - Access Privileges for Role Scopes (Service Provider, Tenant, and Operating Company)
  - Licenses
    - About the Licenses Page
  - Signature Database
  - Managing Certificates
    - Certificates Overview
    - About the Certificates Page
    - Importing a Certificate
    - Installing and Uninstalling Certificates
      - Installing a Certificate
      - Uninstalling a Certificate
    - About the VPN Authentication Page
  - Managing Juniper Identity Management Service

ContentsHide

Customer Portal Online Help
- About the Documentation
- Overview
  - Introduction
- Dashboard
  - Using the Dashboard
    - About the Customer Portal Dashboard
  - Managing Objects
- Monitoring the Customer Portal
  - Monitoring Security Alerts and Alarms
    - About the Monitor Overview Page
    - Alerts Overview
    - About the Generated Alerts Page
    - About the Alert Definitions Page
    - Managing Security Alerts Definitions
    - Creating Security Alert Definitions
    - Editing, Cloning, and Deleting Security Alert Definitions
    - About the Alarms Page
  - Monitoring Security and Device Events
  - Monitoring SD-WAN Events
    - SD-WAN Events Overview
    - About the SD-WAN Events Page
  - Monitoring Applications
  - Monitoring Threats
    - About the Threats Map (Live) Page
  - Monitoring Jobs
    - About the Jobs Page
    - Editing and Deleting Scheduled Jobs
      - Editing Scheduled Jobs
      - Deleting Scheduled Jobs
    - Viewing Job Details
    - Retrying a Failed Job on Devices
- Managing Resources
  - Managing Devices
    - Multidepartment CPE Device Support
    - About the Devices Page
    - Performing Return Material Authorization (RMA) for a Single-CPE Device
    - Performing Return Material Authorization (RMA) for Dual-CPE Devices
      - Performing RMA for an NFX Cluster
      - Performing RMA for an SRX Cluster
    - Granting RMA for a Device
    - Managing a Single CPE Device
    - Rebooting a CPE Device
  - Managing Device Images
- Managing Configuration
  - Configuring Network Services in a Distributed Deployment
  - Managing Firewall Policies
    - Firewall Policy Overview
    - About the Firewall Policy Page
    - Creating Firewall Policy Intents
    - Editing, Cloning, and Deleting Firewall Policy Intents
    - Selecting Firewall Source
    - Selecting Firewall Destination
    - Firewall Policy Examples
    - Firewall Policy Schedules Overview
    - About the Firewall Policy Schedules Page
    - Creating Schedules
    - Editing, Cloning, and Deleting Schedules
  - Unified Threat Management
    - UTM Overview
    - Configuring UTM Settings
    - About the UTM Profiles Page
    - Creating UTM Profiles
    - Editing, Cloning, and Deleting UTM Profiles
      - Editing UTM Profiles
      - Cloning UTM Profiles
      - Deleting UTM Profiles
    - About the Web Filtering Profiles Page
    - Creating Web Filtering Profiles
    - Editing, Cloning, and Deleting Web Filtering Profiles
      - Editing Web Filtering Profiles
      - Cloning Web Filtering Profiles
      - Deleting Web Filtering Profiles
    - About the Antivirus Profiles Page
    - Creating Antivirus Profiles
    - Editing, Cloning, and Deleting Antivirus Profiles
      - Editing Antivirus Profiles
      - Cloning Antivirus Profiles
      - Deleting Antivirus Profiles
    - About the Antispam Profiles Page
    - Creating Antispam Profiles
    - Editing, Cloning, and Deleting Antispam Profiles
      - Editing Antispam Profiles
      - Cloning Antispam Profiles
      - Deleting Antispam Profiles
    - About the Content Filtering Profiles Page
    - Creating Content Filtering Profiles
    - Editing, Cloning, and Deleting Content Filtering Profiles
      - Editing Content Filtering Profiles
      - Cloning Content Filtering Profiles
      - Deleting Content Filtering Profiles
    - About the URL Patterns Page
    - Creating URL Patterns
    - Editing, Cloning, and Deleting URL Patterns
      - Editing URL Patterns
      - Cloning URL Patterns
      - Deleting URL Patterns
    - About the URL Categories Page
    - Creating URL Categories
    - Editing, Cloning, and Deleting URL Categories
      - Editing URL Categories
      - Cloning URL Categories
      - Deleting URL Categories
  - Managing SD-WAN
    - SLA Profiles and SD-WAN Policies Overview
    - About the SD-WAN Policy Page
    - Creating SD-WAN Policy Intents
    - Editing and Deleting SD-WAN Policy Intents
      - Editing SD-WAN Policy Intents
      - Deleting SD-WAN Policy Intents
    - About the Application SLA Profiles Page
    - Creating SLA Profiles
    - Editing and Deleting SLA Profiles
      - Editing an SLA Profile
      - Deleting SLA Profiles
  - Managing NAT Policies
    - NAT Policies Overview
    - About the NAT Policies Page
    - Creating NAT Policies
    - Editing and Deleting NAT Policies
      - Editing NAT Policies
      - Deleting NAT Policies
    - About the Single NAT Policy Page
    - Creating NAT Policy Rules
    - Editing, Cloning, and Deleting NAT Policy Rules
    - Deploying NAT Policy Rules
    - Selecting NAT Source
    - Selecting NAT Destination
    - NAT Pools Overview
    - About the NAT Pools Page
    - Creating NAT Pools
    - Editing, Cloning, and Deleting NAT Pools
  - Managing SSL Proxies
    - SSL Forward Proxy Overview
    - About the SSL Proxy Policy Page
    - Creating SSL Proxy Policy Intents
    - Editing, Cloning, and Deleting SSL Proxy Policy Intents
    - Understanding How SSL Proxy Policy Intents Are Applied
    - About the SSL Proxy Profiles Page
    - Creating SSL Forward Proxy Profiles
    - Editing, Cloning, and Deleting SSL Forward Proxy Profiles
    - Configuring and Deploying an SSL Forward Proxy Policy
  - Managing Shared Objects
    - Addresses and Address Groups Overview
    - About the Addresses Page
    - Creating Addresses or Address Groups
    - Editing, Cloning, and Deleting Addresses and Address Groups
    - Services and Service Groups Overview
    - About the Services Page
    - Creating Services and Service Groups
    - Creating Protocols
    - Editing and Deleting Protocols
      - Editing Protocols
      - Deleting Protocols
    - Editing, Cloning, and Deleting Services and Service Groups
    - Application Signatures Overview
    - About the Application Signatures Page
    - Creating Application Signature Groups
    - Editing, Cloning, and Deleting Application Signature Groups
    - About the Departments Page
    - Creating a Department
    - Modifying a Department
    - Deleting a Department
  - Managing Deployments
- Managing Sites and Site Groups
  - Managing Sites
  - Managing Site Groups
    - About the Site Groups Page
    - Creating Site Groups
- Viewing Reports
  - Security Reports
    - Reports Overview
    - About the Security Report Definitions Page
    - Performing Different Actions on Reports
    - About the Security Generated Reports Page
    - Creating Log Report Definition
    - Creating Bandwidth Report Definition
    - Editing and Deleting Log Report Definitions
      - Editing the Log Report Definition
      - Deleting Log Report Definitions
    - Editing and Deleting Bandwidth Report Definitions
      - Editing the Bandwidth Report Definition
      - Deleting Bandwidth Report Definitions
  - SD-WAN Reports
    - About the SD-WAN Report Definitions Page
    - Editing and Deleting SD-WAN Report Definitions
      - Editing the SD-WAN Report Definition
      - Deleting SD-WAN Report Definitions
    - Creating SD-WAN Tenant Performance Report Definition
    - Creating SD-WAN Site Performance Report Definition
    - About the SD-WAN Generated Reports Page
- Administration
  - Managing Tenant Users
    - Role-Based Access Control Overview
    - About the Tenant Users Page
    - Adding Tenant Users
    - Editing and Deleting Tenant Users
      - Editing Tenant Users
      - Deleting Tenant Users
    - Resetting the Password for Tenant Users
  - Managing Audit Logs
  - Managing Tenant User Roles
    - Roles Overview
    - About the Tenant Roles Page
    - Adding User-Defined Roles for Tenant Users
    - Editing, Cloning, and Deleting User-Defined Roles for Tenant Users
    - Access Privileges for Role Scopes (Service Provider, Tenant, and Operating Company)
  - Licenses
    - About the Licenses Page
  - Signature Database
  - Managing Certificates
    - Certificates Overview
    - About the Certificates Page
    - Importing a Certificate
    - Installing and Uninstalling Certificates
      - Installing a Certificate
      - Uninstalling a Certificate
    - About the VPN Authentication Page
  - Managing Juniper Identity Management Service

About the Audit Logs Page

To access this page, select Administration > Audit Logs.

Use the Audit Logs page to view tasks that you have initiated either by using the Contrail Service Orchestration (CSO) GUI or APIs. You can also export audit logs as a CSV file.

Tasks You Can Perform

You can perform the following tasks from this page:

View the details of various user-initiated tasks by selecting More > Details. You can also mouse over the audit log and click on the Detailed View icon. See Viewing the Details of an Audit Log.
Export audit logs as a CSV file by clicking Export. You can open and edit the exported CSV file using an application such as Microsoft Excel. See Exporting Audit Logs.
Sort and filter audit logs. For example, you can use audit log filtering to track user accounts that were added on a specific date, track configuration changes across a particular type of device, view services that were provisioned on specific devices, monitor user login and logout activities over time, and so on. For more information, seeSorting Objects.
Search for a audit log. For more information, see Searching for Text in an Object Data Table.
Show or hide columns. Click the Show Hide Columns icon at the top right corner of the page and select the columns for which you want the details displayed on the Audit Logs page.

Table 189 provides description of the fields on the Audit Logs page.

Table 189: Fields on the Audit Logs Page

Field	Description
Username	Displays the name of the user who has initiated the task.
Role	Displays the role of the user who has initiated the task. Audit logs are displayed for tasks created by both administrator and tenants.
User IP	Displays the IP address of the client from which the user initiated the task.
Task	Displays the name of the task that triggered the audit log. For example, tenant.create, device.create, site.configure, site.provision, tenant.update, and so on.
Description	Displays details about the task.
Status	Displays the status of the task that triggered the audit log: Success—Job has completed successfully. Failure—Job has failed and is terminated. Job Scheduled—Job is scheduled but has not yet started. Recurring Job Scheduled—Recurring job is scheduled.
Timestamp	Displays the date and time at which the execution of the task was completed. This timestamp is stored in UTC time in the database, but is mapped to the local time zone of the client computer.
Job ID	Displays the ID of the job associated with the task.

Related Documentation

Help us to improve. Rate this article.

Feedback Received. Thank You!

Previous

Audit Logs Overview

Next

Viewing the Details of an Audit Log

Related Topics

Need more help?

Ask questions in TechWiki

Contact Customer Support

Check documentation in TechLibrary

Rating by you:

X