Audit logs

Audit entries are encrypted and protected against unnoticed tampering. This helps administrators review whether important security or administrative events happened as expected.

• Login failures, lockouts, and rate-limit events.
• Security checks that fail during connection setup.
• Administrative changes to users, groups, roles, and workspace settings.
• File operations, exports, and deletion or wipe actions.
• Backup, alert, and administrative activity for cloud-hosted deployments.

Workspace administrators can review audit events through the administrative views available for their deployment type.