Activity log
The Activity log captures workspace-level events that don’t belong to the Events group — sign-ins, IAM changes, setting updates, and other administrative actions. It comes with a timeline chart on top so you can spot bursts of activity at a glance, and a detailed list below.
This page is administrator-only.
How to get here
Open the sidebar and go to Audit → Governance → Activity log. Only administrators see this group.
What’s in the list
| Column | What it shows |
|---|---|
| User | The user who performed the action |
| Time | When the action happened |
| IP address | The IP address the action came from |
| Action | What the user did (sign in, change a setting, connect to a server, etc.) |
| Result | The outcome, shown as an HTTP-style status |
| Details | A short summary of the action |
Click the expand icon on any row to see the full detail for that activity.
What kinds of activity show up here
- Authentication — sign-in, sign-out, failed sign-in attempts, session management.
- Server operations — server connections, configuration changes, server-level admin actions.
- Workspace operations — settings modifications, member invitations, permission changes.
- File operations — WebFTP uploads and downloads, file permission changes.
Common things you’d check here
- Security monitoring — spot unusual sign-in patterns. Track repeated failed authentication attempts. Review privileged actions.
- Compliance — keep an audit trail of administrative changes for regulatory reviews.
- Operations — review usage patterns. Identify users who might need training. Track workspace utilization.