Audit logs focus on actions that matter for security, administration, and support. Examples include member changes, role changes, API key activity, SSO settings, SCIM tokens, and policy updates.
Use filters to narrow the log by date, actor, action, or target.For investigations, start with the date range and actor if you know who made the change.
Admins can export audit logs when they need a copy for internal records or review.CSV is useful for spreadsheets. JSON or NDJSON is better for systems that ingest events.