> ## Documentation Index
> Fetch the complete documentation index at: https://docs.ally.security/llms.txt
> Use this file to discover all available pages before exploring further.

# Audit Logs

> Track and review user actions, system events, and configuration changes across your organization for compliance, security, and troubleshooting.

Audit Logs provide a record of all activities and changes within your organization. Use audit logs to track user actions, system events, and changes for compliance and troubleshooting.

<Warning>
  You must have **Admin** or **Owner** role permissions to access Audit Logs. View-only users cannot access audit logs.
</Warning>

## Audit Log Columns

The audit log displays events in a table with the following columns:

* **Timestamp (UTC)** – When the event occurred, with relative time (e.g., "2hr ago")
* **User** – Email address of the user who performed the action, or "System" for automated events
* **Summary** – Brief description of what happened (click to expand for full details)
* **Event Kind** – Type of event (e.g., "User Created", "Report Edited", "Settings Updated")
* **Payload** – Detailed event data in JSON format (click row to expand)

## Searching Audit Logs

Use the search bar at the top to search across:

* Summary text
* Event kind
* User email

The search is case-insensitive and updates results as you type.

## Permissions

* **Account Owners** – Full access to view all audit logs
* **Admins** – Full access to view all audit logs
* **View-only users** – Cannot access audit logs