Enhanced Audit Trail for Zuora Protect
The Enhanced Audit Trail in Zuora Protect is an extension of the OneID Audit Trail feature. It captures and logs various activities performed within a billing tenant, including user login events, data modifications to user profiles and settings, and system configuration changes.
Each recorded event provides information such as the tenant ID, the event type, the action performed, the user who initiated/performed the action, the date and time of the event, the affected field or data, and the affected object name and type.
Audit Logs in Zuora Protect are completely UI-based and do not require any code to query the data. OneID Admins can view and download Zuora Protect audit logs. The data retention period for these Audit logs is over 10 years. However, using the UI, you can generate logs for a maximum of 180 days. For audit logs older than 180 days, contact our support team at support@zuora.com.
The following events support auditing changes in Zuora Protect:
- Audit Login Events
Records every login for each user and allows you to monitor the login history for each user in a selected billing tenant.
- Audit Settings Events
Records every configuration change and user management change, including group change or direct tenant access change, etc., in a selected billing tenant.
- Audit Object Change Events
Records all the transaction changes, including all Update, Create, and Delete actions, that have taken place within the selected billing tenant.
Additionally, the Enhanced Audit Trail also supports auditing changes in OneID, including OneID Login Events and OneID Settings Events. See Manage Audit logs in OneID for more information.
View Enhanced Audit Trail logs
Prerequisites
You must have a Zuora OneID Administrator role to be able to view and generate enhanced audit logs from the Zuora Protect UI. For more information, see Organization Admins.
To view the enhanced audit trail within Zuora Protect, follow the steps given below:
- Login to OneID, navigate to Admin console > Audit Logs in the left-hand navigation section.
- In the Event Types dropdown, select one or more of the following events to generate the audit logs:
- Audit Login Events
- Audit Settings Events
- Audit Object Change Events
- In the Tenant ID dropdown, select the Billing Tenant to generate the audit logs specific to that tenant. You can select multiple tenants to view the combined logs.
- Click Apply.
In the Audit Trail, you'll find a list of recorded logs. Each entry represents a specific action or event. The information provided in an entry includes:
- Action: The action/ event performed.
- Timestamp: The Date and Time when the event occurred.
- Tenant ID: The selected Billing tenant associated with the action
- Environment: The Zuora Environment where the action was performed.
- Event Type: The type of event, such as a login, settings change, or object change event.
- Object Name: The affected billing object
- Username: The user account associated with the action.
- Change Type: The type of event, such as Updated, Created, or Deleted
Applying filters to Enhanced Audit Trail logs
To further refine the audit logs, you can use the following filters:
- Action
- CreatedvBy ID
- Event ID
- Namespace
- Object Name
- Object Type
- Token ID
- User ID
Filters are not applicable for the Audit Login Events.
- Once the logs are generated, use the Add New Filter button and select a filter.
- Click Apply.
- To view the detailed log, click the arrow in the Action column.