Audit Log Management
In TVA, all actions taken are captured in the Tenant audit logs, and are viewable by the tenant administrators. These audit logs provide the administrative staff the ability to review data modification and creation actions, security-related events, and a range of other messages.
Each audit log entry is associated to a specific user, where applicable, and the originating IP address as well. This aggregate of information provides the administration team the ability to carefully track and review system behavior and to identify malicious or unusual actions taken.
As an administrator, the audit logs may be searched under the administration menu on the right side of the navigation bar, or may optionally be exported for additional review or archive.
Audit logs are immutable, in that they may not be directly deleted or modified by the tenant. TVA stores the audit logs in a mechanism that provides no function for the application to modify or remove audit logs directly, and mirrors all application audit logs to a secondary system for additional log integrity. In the event of an issue, the second independent logs may be reviewed for additional assurance.
All audit log messages are associated with the source record impacted, for example a shipment being modified or an asset being created. This association provides a clear mechanism for tracing all changes from a user, an item, or other characteristic over time.