Workspace administration Learn how to manage your Slack workspace or Enterprise Grid org.
Next Previous
Actions,activity,access logs,accessibility,add,add an app,Add members,Add to Slack,administrators,all passwords,analytics,android,announcement,announcements,App Directory,app icon,Apple Watch,approving apps,archive,Asana,Atlassian,Automation apps,badge,billing details,billing,Bitbucket,bot user,box,browse,calls,Calls:,cancel,changes,channels,channel instantly,channel management,channel notification,channel suggestions,claim domains,close,company culture,compliance exports,compose,computers,conversations,convert,connect,connected accounts,connection,connecting,copy messages,create,customization,customize,custom SAML,custom,customer support teams,data exports,data security,deactivate,default channels,delete,deletion,deploy slack,desktop,direct messages,directory,disable,discover and join,Discovery APIs,display name,DMs,Do Not Disturb,domain,domains,downgrade,dropbox,duplicate accounts,edit,editing,education,email address,email,emoji,emoticons,Enterprise Grid,Enterprise Mobility Management,executives,export,failed payments,Fair Billing,faqs,finding,format,formatting,framework for apps,free trials,general,getting started,giphy,github integration,github organization,github,glossary,google apps,google calendar,google drive,guests,highlights,hipchat,human resources,IFTTT,import,Incoming WebHooks,integrations,ios,invite,IT teams,JIRA,join,Keep up,keyboard layout,keyboard shortcuts,Keychain Access,keyword notifications,language,languages,leave,link previews,loading,limits,links,linux,mac,manage a workspace,manage apps,manage members,marketing,mention,merge,message actions,messages are displayed,message display,microsoft products,mobile,mobile push,move channels,moving workspaces,multiple,mute,name,names,noise,nonprofits,notify,OneDrive,onboard,owners,password,payment,payments,permissions,phones,pin,plan,plans,plus plan,polls,primary ownership,privacy policies,prioritize tasks,private,private channel,private notes and files,project management,public channel,purpose,Quick Switcher,quote,reactivate,read,recruitment,referrer information,reminder,remove,rename,retention,Request a new workspace,role,roles,RSS,sales,Salesforce,SAML,SCIM,SCIM provisioning,screen reader,search,send,session duration,share messages,share,shared channel,shared channels,sidebar,sign in,sign out,signup mode,single sign-on,Slack Day,Slack for Teams,Slack notifications,Save notes and files,Service Level Agreements,ServiceNow,sign up,slack status,slackbot,slash commands,snippet,snooze,software developers,star,statistics,Stride,sync,tablets,tax,threads,time zone,tips,to-do lists,topic,triage channels,Terms of Service,Trello,troubleshoot,trouble receiving,tour,twitter,two-factor authentication,unread messages,updates,upgrade,upload,username,user groups,URL,vacation,Vendor and remittance,video,voice call,voice,what is,what's important,whitelisting,windows phone,windows,working in,workspace apps,workspace creation requests,workspace discovery,workspace's settings,wunderlist,your actions,Zapier,zoom,features,#general,File storage,posts,dark mode,theme,Workflow Builder,Voice,video,screen sharing,workflows,Outlook Calendar,Invited members,Transfer ownership,Whitelist,Enterprise Key Management,Transport Layer Security,Strong customer authentication,CSV,text file,work hours,
Search for “[term]” See [n]+ more results →
Audit logs on Enterprise Grid Audit logs provide a record of changes and usage on Enterprise Grid that help keep your org secure and protect against misuse. You can view audit logs right in Slack, export them as a CSV, and use the Audit Logs API to create custom monitoring tools.
Tip: Learn more about your organization as a whole with analytics for Slack Enterprise Grid .
From your desktop, click your workspace name in the top left.
Select Settings & administration from the menu, then click Organization settings .
From the left sidebar, select Security , then click Audit Logs .
Use the drop-down menus to filter the log entries by Acting user , Event , Affects , or Date range . You can review the filtered log entries below, or click Export CSV in the top-right corner to download them.
Tip: Org Primary Owners can allow Org Admins to access audit logs in Slack by assigning them the Audit Log Admin system role .
We built the Audit Logs API for Enterprise Grid orgs with security, legal, and compliance in mind. Use the Audit Logs API to:
Send data to a security information and event management (SIEM) tool.
Watch for potential security issues or malicious attempts to access your org.
Build custom apps for better insight into how your company uses Slack.
You can learn more about how to use the Audit Logs API or work with someone technical on your team to get started.
Note: Audit logs show data dating back to mid-March 2018, when this API method became available to workspaces.
Who can use this feature?
Org Owners , and Org Admins with the Audit Logs Admin
Available on the Enterprise Grid plan
Thanks so much for your feedback!
If you’d like a member of our support team to respond to you, please send a note to feedback@slack.com .
If you’d like a member of our support team to respond to you, please send a note to feedback@slack.com .
If you’d like a member of our support team to respond to you, please send a note to feedback@slack.com .
