Skip to main content

Audit Events

Audit events are tracked by Alteryx One Platform and captured in the audit trail.

Account Administration

Event

Description

Additional Metadata

A product entitlement has been removed as a result of an expired contract

A product has been enabled in a workspace as a result of a change to the contract.

A product has been enabled in a workspace as a result of a change to the contract

A product has been disabled in a workspace as a result of an expired contract.

An API access token has been set up as a result of a contract change

An API access token has been disabled as a result of an expired contract.

assign_user_seats

1 or more users have been assigned a role.

userIdsWithUnassignedSeat

productPolicyId

create_audit_storage_connection

Audit to cloud storage connection is created.

bucketName

cloudStorageType (S3, Azure, GCS, etc)

create_billing_account

Creation of a billing account.

billingAccountId

billingAccount.getName()

delete_audit_storage_connection

Audit to cloud storage connection is deleted.

cloudStorageType (S3, Azure, GCS, etc)

(if successful)

bucketName

deprovision_product

A product entitlement has been removed as a result of an expired contract.

productName

productSKU

enable_api_access

An API access token has been set up as a result of a contract change.

licenseBillingService

insufficient_seats_quantity_for_role

An attempt to assign 1 or more users a role was rejected because there were insufficient seats for a specific role.

productPolicyId

userIdsWithUnassignedSeat

no_user_seats_assigned

An attempt to assign 1 or more users a role was rejected because the users were already assigned the specified role.

productPolicyIduserIds

no_user_seats_assigned

An attempt to assign 1 or more users a role was rejected because there were insufficient entitlements.

productPolicyIduserIds

no_user_seats_to_revoke

An attempt to remove seats occurred, but it was not successful as there are no seats to be revoked.

removedProductPolicyIds

removedUserIds

provision_product

A product entitlement has been provisioned as a result of a change to the contract.

productName

productSKU

revoke_user_seats_due_to_overages

An attempt to add assigned seats exceeded the contracted values and the seats causing overages have been revoked.

removedProductPolicyIds

removedUserIds

revoke_user_seats

Seats have been revoked.

removedProductPolicyIds

removedUserIds

update_audit_storage_connection

Audit to cloud storage connection is updated.

cloudStorageType (S3, Azure, GCS, etc)

new: {
 bucketName, 
 bucketRegion,
 roleArn
}

(if successful)

old: 
{  
  bucketName,
  bucketRegion,  
  roleArn 
}

update_billing_account

A modification to the name of the billing account.

billingAccountId

oldBillingAccountName

newBillingAccountName

update_entitlements_quantity

A modification to the number of effective entitlements.

oldEntitlementQuantity

newEntitlementQuantity

update_workspace_tier

A modification to the contract tier.

oldTierName

newTierName

workspaceName

Workflow

Event

Description

Additional Metadata

create_workflow

Creating a new workflow. workflowMode could be: Cloud Native, Standard.

assetId

workflowName

workflowMode

import_workflow

Importing workflow is complete.

assetId

workflowName

delete_workflow

Workflow is deleted.

assetId

workflowName

workflow_run_initiated

Initiating Full Run execution for workflow. initiatedFrom could be: Schedule, Plans, Cloud.

assetId

workflowName

initiatedFrom

export_workflow

Workflow is exported.

assetId

workflowName

update_workflow

Capturing any update to a workflow (when a new version was added for workflow).

assetId

workflowName

rename_workflow

Renaming workflow.

assetId

oldWorkflowName

newWorkflowName

set_workflow_version_name

Setting a name for specific workflow version.

assetId

versionId

versionName

remove_access_workflow

Removing access for workflow.

assetId

workflowName

removedAccessUserId

removedAccessUserEmail

share_access_workflow

Sharing access on workflow. permissionType could be: view/edit.

assetId

workflowName

shareeUserId

shareeEmail

permissionType

Scheduling

Event

Description

Additional Metadata

create_schedule_data_connection

Schedule data connection created.

asset_type

asset_id(s)

create_schedule

Schedule created.

asset_type

asset_id(s)

delete_schedule

Schedule deleted.

asset_type

asset_id(s)

disable_schedule

Schedule disabled.

asset_type

asset_id(s)

enable_schedule

Schedule enabled.

asset_type

asset_id(s)

modify_schedule

Schedule modified.

asset_type

asset_id(s)

update_schedule_data_connection

Schedule data connection updated.

asset_type

asset_id(s)

Plans

Event

Description

Additional Metadata

create_plan

Plan created.

assetId

planName

delete_plan

Plan deleted

assetId

planName

Email_Task_Added

Email task added to a Plan.

assetId

planName

HTTP_Task_Added

HTTP task added to a Plan.

assetId

planName

Email_Task_Recipient

Recipients added/deleted from an email task (To, CC, BCC).

assetId

planName

HTTP_Task_Edited

Configuration of an HTTP task in a plan edited.

assetId

planName

rename_plan

Plan renamed.

assetId

planName

assetId

initiatedFrom

share_access_plan

Plan shared. As a successful event is considered only plan shared, not dependencies.

assetId

planName

shareeUserId

shareeEmail

permissionType

export_plan

Plan exported.

assetId

planName

import_plan

Plan imported.

assetId

planName

transfer_owner_plan

Plan ownership transferred to another user.

assetId

planName

planOldOwner

planNewOwner

Plan_Output_Download

Output downloaded as part of a plan .

assetId

planName

Auto Insights

Event

Description

Additional Metadata

mission.created

Mission created

name

ulid

mission.sent

Mission sent

name

ulid

mission.deleted

Mission deleted

name

ulid

mission.subscription.created

Mission subscription created

name

ulid

mission.subscription.deleted

Mission subscription deleted

name

ulid

report.created

Report created

name

ulid

report.published

Report published

name

ulid

report.sent

Report sent

name

ulid

report.downloaded

Report downloaded

name

ulid

report.deleted

Report deleted

name

ulid

report.subscription.created

Report subscription created

name

ulid

report.subscription.deleted

Report subscription deleted

name

ulid

playbooks.scenarios.synthetic.generate

Generate list of Playbooks use cases from scenario.

aaiService, sessionID

playbooks.reports.synthetic.generate

Generate list of Playbooks Reports using synthetic data.

aaiService, reportID

playbooks.reports.byo.generate

Generate list of Playbooks Reports using Dataset X.

aaiService, reportID

playbooks.scenarios.byo.generate

Generate list of Playbooks use cases on Dataset X.

aaiService, sessionID

Autenticação

Chave do evento

Descrição do evento

Campos de metadados adicionais

create_oauth_token

Crie o token de API OAuth 2.0 pelo usuário <userId> em espaço de trabalho|conta <workspaceId>|<accountId>.

create_session

Sessão <sessionId> criada no local <location> usando <browser>.

create_static_api_token

Crie token de acesso pelo usuário <userId> no espaço de trabalho|conta <workspaceId>|<accountId>.

create_user

Crie o usuário <email>.

delete_oauth_token

Exclua o token de API OAuth 2.0 <tokenId> no espaço de trabalho|conta <workspaceId>|<accountId>.

delete_static_api_token

Exclua o token de acesso <tokenId> do espaço de trabalho <workspaceId>|<accountId>.

export_status_rescan_domain_trigger

A nova leitura do domínio do status de exportação foi acionada.

emailDomain

export_status_rescan_login

O status de exportação de um usuário foi lido novamente durante o login.

exportStatus

export_status_rescan_trigger

A nova leitura do status de exportação foi acionada.

export_status_update

O status de exportação de um usuário foi atualizado pelo evento Amber Road.

exportStatus, updatedStatus

force_reset_password

Force o usuário <userId> a redefinir a senha ao fazer login.

reset_password

Redefina a senha para o usuário <userId>.

revoke_oauth_token

Revogue o token de API OAuth 2.0 <tokenId> no espaço de trabalho|conta <workspaceId>|<accountId>.

revoke_session

Revogue a sessão <sessionId> do usuário <userId>.

create_ip_list

Crie uma Lista de IP para a conta <accountId>.

create_sso_config

Crie uma configuração de SSO no espaço de trabalho|conta <workspaceId>|<accountId>.

update_sso_config

Atualize a configuração de SSO no espaço de trabalho|conta <workspaceId>|<accountId>.

update_ip_list

Atualize a Lista de IP da conta <accountId>.

existingIpAddresses, updatedIpAddresses

update_password

Atualize a senha do usuário <userId>.

update_user

Atualize o usuário <userId>.

validate_one_time_passcode

Valide o código de acesso único (OTP) do e-mail <email>.

Autorização

Chave do evento

Descrição do evento

Campos de metadados adicionais

add_group_role

Adicione a função [roleId] ao grupo [groupId].

objeto de grupo, [objetos do usuário], [objetos da função]

add_group_user

Adicione o usuário [userGid] ao grupo [groupId].

objeto de grupo, [objetos do usuário], [objetos da função]

asset_transfer_event

A propriedade dos <ativos> foi transferida para PersonId-<PersonId> PersonEmail-<personEmail>.

ativos, toPersonId, toPersonEmail

assign_role

Atribua a função <roleId> aos usuários <userIds> no espaço de trabalho <workspaceId>.

create_role

Crie a função <roleName> no espaço de trabalho <workspaceId>.

disable_scim

Conexão do SCIM desabilitada por [email].

disable_user

Desabilite o usuário <personId> no espaço de trabalho <workspaceId>.

enable_user

Habilite o usuário <personId> no espaço de trabalho <workspaceId>.

generate_scim_token

Token SCIM gerado por [email].

invite_user

Convide o usuário <email> para a conta|espaço de trabalho <workspaceId>|<accountId>.

reinvite_user

Convide novamente o(s) usuários(s) <personIds> para a conta <workspaceId>|<accountId>.

remove_group_role

Remova a função [roleId] do grupo [groupId].

[objeto de grupo], [objetos de usuário], [objetos da função]

remove_group_user

Remova o usuário [userGid] do grupo [groupId].

[objeto de grupo], [objetos de usuário], [objetos da função]

remove_user

Usuário <personIds> removido da conta <accountId>.

ou

Usuário <personIds> removido do espaço de trabalho <workspaceId>.

revoke_role

Cancele a atribuição da função <roleId> do usuário <userId> no espaço de trabalho <workspaceId>.

create_group

Adicione o usuário [email] ao grupo [groupId].

delete_group

Remova o usuário [email] do grupo [groupId].

enable_scim

Conexão do SCIM habilitada por [email].

update_group

Nome de exibição do grupo alterado para [name].

update_role

Atualize a função <roleId> no espaço de trabalho <workspaceId>.

Gerenciamento do espaço de trabalho

Chave do evento

Descrição do evento

Campos de metadados adicionais

add_workspace

Crie um espaço de trabalho com o nome <name> e máximo de usuários <max_user_number> para billingAccountId <accountId>.

ou

Crie um espaço de trabalho com o nome <name> e máximo de usuários <max_user_number> para o nível <tier>.

delete_workspace

Exclua o espaço de trabalho <workspaceId>.

update_workspace

Nome de Detalhes do espaço de trabalho atualizado para <name> e máximo de usuários atualizado para <maxUserNumber> para workspaceId <workspaceId> e billingAccountId <accountId>.

workspace_setting_change

Atualize a configuração no espaço de trabalho <workspaceId>:<configurationName>.

configurationName, configurationValue, workspaceName

Nesta secção: