Context-Aware Access audit log

Use data to troubleshoot users’ access to apps

As your organization's administrator, you can use the Context-Aware Access audit log to troubleshoot when a user is denied access to an app. Entries usually appear within an hour of when the user’s access is denied.

For more information, go to Context-Aware Access overview.

Open the Context-Aware Access audit log

  1. Sign in to your Google Admin console.

    Sign in using your administrator account (does not end in

  2. From the Admin console Home page, go to Reports.
  3. On the left, under Audit log, click Context-Aware Access.
  4. (Optional) To customize what data you see, on the right, click Manage columns "". Select the columns that you want to see or hideand thenclick Save.

Data you can view

The Context-aware access audit log provides the following information:

Data type Description
Event name The action that was logged, such as a user being denied access to an app
User User who triggered the logged action
IP address IP address of the user
Application App the user was denied access to
Device ID The device's ID, as shown in Admin console Home pageand thenDevices 
Access level applied Access levels that are assigned to the app the user tried to access
Date Date and time of the event (displayed in your browser's default time zone)

Event names

At Add a filter, select an Event name to filter data for that event. The audit log shows entries for each time the particular event occurred during the time range that you set. Event names are self-explanatory.

When and how long is data available?

Go to Data retention and lag times.

Related topics

Was this helpful?
How can we improve it?

Need more help?

Sign in for additional support options to quickly solve your issue

Clear search
Close search
Google apps
Main menu
Search Help Center