Audit Log is a record of operation information of Cloud Automator. User with "Owner" or "Admin" privileges can download operation logs as CSV files with two character code (UTF-8 or Shift_JIS). It is recommended to use Shift_JIS file when using Windows Excel.
It records automatically when you perform specific operations.
Refer to the following"List of operation types" for designated operations.
User types who can use this feature
| Member | Admin | Owner |
|---|---|---|
| × | ◯ | ◯ |
How to use
- Move to Operation log screen from "Downloads" menu
-
Two download buttons are displayed for each character code, and you can download the user_audit_logs.csv file by clicking those.
CSV file format
The CSV file, which can be downloaded, has following formats.
| Item name | Contents |
|---|---|
| Created at | Date and time of operation |
| Email address of the user who performed the operation | |
| Action | Action information. See below table for the detail. |
| Group name | Group to which the target resource of the opration belongs to. |
| Subject Type | Trype of targeted operation. If it is job, then "TriggerJob" |
| Subject ID | ID of targeted operation. If it is job, then "Job ID" |
| Subject Name | Name of targeted operation. If it is job, then "Job name" |
| Channel | Channel. Management console is using web. If it is through API, then api. If it is empty, then it is due to data maintenance etc... |
| IP Address | Connection source that performed the operation |
| Request ID | ID that identifies the operation. When multiple resources are operated by one operation, the same request ID may be obtained by multiple records |
List of operation types
| Operation name | Content |
|---|---|
| aws_account.created | AWS Account has added |
| aws_account.destroyed | AWS Account has deleted |
| aws_account.updated | AWS Account has updated |
| group.created | Group has added |
| group.destroyed | Group has deleted |
| group.updated | Group has updated |
| integration.connected | Connected to other service |
| integration.disconnected | Disconnected from other service |
| job.activated | Job has activated |
| job.created | Job has created |
| job.deactivated | Job has deactivated |
| job.destroyed |
Job has deleted |
| job.duplicated | Job has duplicated |
| job.imported | Job has imported from CLI tool |
| job.migrated | Old SQS Trigger Job has migrated to new version |
| job.run_on_demand | Job has executed immediately |
| job.updated | Job has updated |
| job_workflow.activated | Job Workflow has activated |
| job_workflow.created | Job Workflow has created |
| job_workflow.deactivated | Job Workflow has deactivated |
| job_workflow.destroyed | Job Workflow has deleted |
| job_workflow.run_on_demand | Job Workflow has executed immediately |
| job_workflow.updated | Job Workflow has updated |
| user.activate | User has activated |
| user.deactivate | User has deactivated |
| user_assignment.created | User has added to Group |
| user_assignment.destroyed | User has deleted form Group |
| workspaces_list.downloaded | WorkSpaces list has downloaded |
| workspaces_list.requested | WorkSpaces list generation has requested |
Limitations
- Audit log for the past 365 days can be downloaded
- If you need the operation logs prior to that time, please contact support
- For logs dated before January 9, 2025, the IP address recorded in the operation log is that of Cloud Automator's internal infrastructure, not that of the user who actually operated the system, as it should be.
- This is due to a problem that occurred in the past and has now been resolved.
- If you would like to verify the correct address of the operation log prior to January 9, 2025, please contact our support.