While various users can have permission to make administrative changes in your workspace, it’s important to keep track of those changes to prevent misuse and maintain security. Security Logs in Rocket.Chat provide a detailed record of modifications made to your workspace settings (under Administration > Workspace > Settings). They provide insights to help you trace configuration changes across your workspace and identify which users performed them.
Each log entry includes:
The setting that was changed
The time of the change
The user who made the change
What the setting was changed from and to
The user must have the Can Audit Log
permission to access this feature.
View security logs
To access the Security Logs panel,
Go to Administration > Audit > Security Logs. If no time frame is set, records are shown from the most recent to the oldest.
You can click on a log entry to view more details about the change.
Use the Settings dropdown to filter logs by a specific setting, then click Apply filters.
Use the date picker to select a start and end date, then click Apply filters to view logs from a selected period.