# Audit Logs

Audit logs display the results of recent logins, scans, and other actions. From the menu pane, go to **ADMIN > Audit Logs**.

Use this page to:

* monitor logins, scans, and user actions
* investigate unusual or unauthorized activity
* [export audit logs](/admin-settings/audit-logs/exporting-audit-logs.md)

## Prerequisites

You need read/write permissions to view audit logs.

## Audit log event types

For a list of log event types, see the article [logType](/api-documentation/api-reference/api--audit/types/enums/log-type.md).

## Audit log details

The page includes the following elements:

* **Filters:** Use the filter pane for single or multi-select filters. The filters display actions completed in the selected period.
* **Summary metrics:** Shows the total log count.
* **Execution list:** Displays details for each login or scan.

<div align="left"><figure><img src="/files/u4qHZCeWhCBp0el1m1Ox" alt=""><figcaption></figcaption></figure></div>

<table><thead><tr><th width="177" valign="top">Element</th><th valign="top">Description</th></tr></thead><tbody><tr><td valign="top">Period filter<br>(in the header)</td><td valign="top">Filters the results to the selected period.</td></tr><tr><td valign="top">Total</td><td valign="top">Displays the total number of actions based on the applied filters.</td></tr><tr><td valign="top">Search bar</td><td valign="top">Enter text to search for a specific term.</td></tr><tr><td valign="top">Filters</td><td valign="top"><p>Select one or multiple filters:</p><ul><li><strong>Action:</strong> Examples: Login, Scan Now. Slack Alert Sent, Jira Ticket Opened.</li><li><strong>User</strong></li><li><strong>Log Type</strong>: Examples: Authentication, Scan</li></ul></td></tr><tr><td valign="top">Log details</td><td valign="top"><p>Use the tooltips to identify icons.</p><ul><li><strong>User:</strong> The name of the user.</li><li><strong>Action:</strong> Login or Scan.</li><li><strong>Additional Info:</strong> Shows additional details like the User Role or Scan ID.</li><li><strong>Log Type</strong></li><li><strong>Date:</strong> The date of the action.</li></ul></td></tr></tbody></table>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.ox.security/admin-settings/audit-logs.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.