Auditing events in

BlackBerry UEM

If you have

BlackBerry UEM

on-premises,

UEM

keeps administrator and security audit events in log files that you can use to investigate any administrator actions and interactions between UEM and devices.

Viewing and exporting administrator and security audit events is not supported for

UEM

.

UEM

records all actions that administrators perform in the management console. From the Audit configuration screen, you can choose the types of security events that you want to record in the log file. You can also filter the list of actions to display only the actions that are relevant to your investigation. For further analysis or reporting purposes, you can export the filtered list to a .csv file.

Security audit events include server actions such as the delivery of commands or policies, starting or stopping a

UEM

instance, initiation or termination of trust channels, certificate validation status, and changes to the audit settings.