The Audit Events view is introduced in API Connect v10.0.8.3.
Audit event logs can now be accessed at two levels:
- At the cloud level, via the Cloud Manager
- At the provider organization level, via the API Manager
Simply use the left-hand navigation menu to access the Audit events page in either context.

Effective governance starts with visibility. The newly enhanced Audit Events view in API Connect helps teams trace platform activity, investigate changes, and meet compliance requirements — all from an intuitive UI.

What’s New?

With this release, the Audit Events UI introduces:
- A timeline chart to visualize event activity over time
- Advanced filters to narrow events by org, user, action, and more
- A data table with customizable columns
- A details view to inspect the full content of any event

Together, these features allow you to monitor and investigate actions across your API ecosystem with ease.

Component Breakdown

🔍 Filters: Precision Search Made Simple

• Quickly narrow down your audit data using dropdown filters:
  - Timeframe: Last 1m, 5m, 1h, 24h, etc or a custom range
  - Fields: Org ID, Catalog ID, Space ID, Action (e.g., update, create), User ID, Type URI
  - Supports both exact match and contains logic for flexibility
  

• This helps you isolate events like catalog updates, failed alerts, or changes by a specific user.
  
  

📈 Timeline Chart: See the Spikes

• The chart gives a visual summary of event volume:
  - Horizontal axis: Time (localized)
  - Vertical axis: Number of audit events
  - Helpful for spotting spikes due to bulk changes, script runs, or potential anomalies
  
  

📋 Table: Audit Events at a Glance

• The main table displays key fields for each event:
  - Time, Action, User, Org ID, Outcome, and more
  - You can sort, filter, or customize columns
  - Clicking a row opens the full details view
• It’s the fastest way to scan hundreds of events and spot relevant ones.
  

🧾 Details View: Complete Event Visibility

• Clicking into a row reveals the full audit event in structured format, including:
  - User & Identity Provider (e.g., steve, default-idp-2)
  - Component and method (e.g., PUT, analytics)
  - Action summary (e.g., “Update a rule”)
  - Target path and scope (e.g., org-level rule update)
• You also see request/response payloads like:
  - Rule title (API Performance Monitoring 1)
  - Trigger (High Response Time), severity, and webhook delivery issues (e.g., Request limit exceeded)
  - Alert status and historical failures with timestamps
  
• This deep visibility allows teams to audit, debug, or validate changes confidently.
  
  

Why It Matters

Audit event analysis no longer requires CLI or external tools. With this UI, you can:
- Trace who changed what — and when
- Verify configuration updates and security events
- Quickly investigate delivery failures in alerting systems
- Ensure compliance with full event visibility

Configuration Notes
- 📢 This feature requires that audit events are configured to be sent to API Connect Analytics.
- The audit event data follows the CADF (Cloud Auditing Data Federation) standard format.
- 📢 By default, audit data is retained for 30 days, but this retention period is configurable based on organizational needs.

Looking Ahead

This enhanced audit view lays the groundwork for smarter governance and deeper operational insight. Whether you’re monitoring platform changes, troubleshooting alerts, or preparing for an audit, this tool ensures you're in control.

To dive deeper into the structure of audit events and how they are represented in API Connect Analytics, refer to the official IBM documentation:
👉 Audit event reference – API Connect v10.0.8 LTS