Audit Logs#
The Audit Log records all significant actions performed within your Reply CMP tenant — from connections being added to resources being deployed to users being invited. Each entry is timestamped, attributed to a user, and linked to the affected entity.
Navigate: left navigation → Tenant → Auditing.
Event type tabs#
The Auditing section is organised into 8 tabs, one per event category. Tabs are permission-gated — you see only the tabs your role allows.
Tab |
Badge colour |
What it records |
|---|---|---|
Tenant |
Purple |
Tenant configuration and settings changes |
Connections |
Light Blue |
Connection created, updated, deleted, credentials rotated |
Deployments |
Deep Orange |
Deployment created, plan run, applied, deleted, drift detected |
Policies |
Amber |
Policy created, modified, deleted, policy run events |
Discovery |
Teal |
Discovery syncs triggered, resources found / changed / removed |
Dashboards |
Green |
Dashboard created, shared, modified, deleted |
Reports |
Purple |
Report configuration created, modified, deleted, run triggered |
Queries |
Pink |
Saved queries created, modified, deleted, executed |
Anatomy of a log entry#
Field |
Description |
|---|---|
Timestamp |
UTC time of the event (converted to local time if enabled in Account settings) |
Event type |
The action (e.g. “Connection Created”, “Policy Modified”) |
Actor |
The user who performed the action (display name + email) |
Target entity |
What was acted upon (connection name, deployment name, etc.) |
Stream ID |
Unique identifier linking all events for the same entity |
Filtering#
Date range filter — narrow the log to a specific period. Defaults to last 30 days.
Stream ID filter — enter a stream ID to view the complete history of one entity (all events ever linked to that specific connection, deployment, policy, etc.).
Tip
Copy a stream ID from any log entry and paste it into the filter field to see the full lifecycle of that entity — creation, every edit, and deletion — in chronological order.
Pagination#
5 entries per page by default. Click Load More to append 5 more. Results are sorted newest-first.
Common audit scenarios#
Scenario |
Steps |
|---|---|
“Who deleted the Production connection?” |
Connections tab → filter by date range → look for “Connection Deleted” entries |
“What changed on this deployment?” |
Find any entry for the deployment → copy Stream ID → paste into Stream ID filter |
“Did anyone invite new users recently?” |
Tenant tab → filter last 7 days → look for “User Invited” events |
“Why did the policy not run last Tuesday?” |
Policies tab → filter to Tuesday’s date → find the policy’s run entry |