This guide will show an administrator how to access the Intune audit log which will provide information on any changes that have happened within the portal.
Role Requirements
Procedure Scope: Administrators
Required Group Membership: Admin.Security
Handbook Reference
Package: TBD
Domain: TBD
Modifies: TBD
Intune Audit Log Report
- Navigate to the Audit Logs – Intune portal, here you will find logs that include a record of activities that generate a change, for example any create, update (edit), delete, assign, and remote actions all generate events. Administrators can review the audit logs to track and monitor events for almost every Intune workload. If you are looking for a specific event based on a classification such as a date, category, or activity, you can utilize the provided filters as desired to return the results you need.
Need Assistance?
Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.