Audit Trail
Security event logging and compliance tracking.
The Audit Trail interface showing security-relevant events and user actions.
Overview
Audit Trail records security-relevant events in your Simuzo installation, providing an audit log for compliance and troubleshooting.
Accessing Audit Trail
Navigate to Audit Trail in the Admin Panel.
Event Types
Audit Trail records:
| Category | Events |
|---|---|
| Authentication | Login, logout, failed login attempts |
| User Management | User created, modified, deleted |
| Resource Limits | Limits changed, enabled, disabled |
| Settings | Configuration changes |
| System | Service start/stop, errors |
Filtering Logs
Filter by Tab
- All — View all events
- User — Filter by specific user
- Type — Filter by event type
Search
Use the search box to find specific events or terms.
Time Range
View logs from different time periods based on your retention settings.
Log Format
Each log entry contains:
| Field | Description |
|---|---|
| Timestamp | When the event occurred |
| User | Username that performed the action |
| Type | Event category |
| Details | Additional event information |
| IP Address | Source IP of the request |
Configuration
Configure Audit Trail in Settings → General:
Enable/Disable
Toggle Enable Audit Trail to turn logging on or off.
Retention Period
| Setting | Default | Range |
|---|---|---|
| Retention Days | 7 | 7-365 days |
Service Management
# Check service status
systemctl status simuzo-audit
# Start service
systemctl start simuzo-audit
# Stop service
systemctl stop simuzo-audit
# Restart service
systemctl restart simuzo-auditLog Storage
Audit logs are stored at:
/var/simuzo/logs/audit.jsonlFormat is JSON Lines (one JSON object per line).
Disk Space
Higher retention periods require more disk space. Monitor your log directory to ensure adequate storage.
Troubleshooting
Logs Not Being Recorded
- Check audit is enabled in Settings
- Verify service is running:
systemctl status simuzo-audit - Check log file permissions
- Review log file:
tail /var/simuzo/logs/audit.jsonl
Service Won't Start
- Check configuration:
/var/simuzo/conf/audit.conf - Check disk space:
df -h - Review logs:
journalctl -u simuzo-audit
Compliance
Audit Trail helps meet compliance requirements for:
- PCI-DSS
- HIPAA
- SOC 2
- GDPR
Regular Review
Periodically review audit logs to identify suspicious activity or policy violations.
Related Topics
- Settings — Configure audit options
- Statistics — Resource usage monitoring