Auditing events in BlackBerry UEM
If you have
UEMkeeps administrator and security audit events in log files that you can use to investigate any administrator actions and interactions between UEM and devices.
Viewing and exporting administrator and security audit events is not supported for
UEMrecords all actions that administrators perform in the management console. From the Audit configuration screen, you can choose the types of security events that you want to record in the log file. You can also filter the list of actions to display only the actions that are relevant to your investigation. For further analysis or reporting purposes, you can export the filtered list to a .csv file.
Security audit events include server actions such as the delivery of commands or policies, starting or stopping a
UEMinstance, initiation or termination of trust channels, certificate validation status, and changes to the audit settings.