Purview
      Back to home
      1. Sittadel Knowledge Base
      2. Management Guides
      3. Purview

      Purview Audit Search Report

      This guide will show an administrator how to view active and completed audit searches that have been initiated within the Purview portal.

      Role Requirements

      Procedure Scope: Administrators

      Required Group Membership: Admin.Compliance

      Handbook Reference

      Package: TBD

      Domain: TBD

      Modifies: TBD

      Purview Audit Search Report

      1. Navigate to the Search – Purview portal, we will want to scroll down to the bottom of the page to view the list of all active and completed audit searches that have been initiated by administrators within your organization. The information associated with each search job includes Search name, Job status, Progress (%), Search time, Total results, Creation time, and Search performed by.
      2. To view details about a search job, select the search job. The information associated with the individual items gathered in the search job results include Date (UTC), IP Address (if applicable), User, Record type, Activity, Item, Admin Units, and Details. If you would like to export all search job items to perform an investigation on the returned data, you can select Export to save a .csv file.

      Need Assistance?

      Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.