Audit file description


I have been collecting the audit logs using -audit but I don’t know what each field means. Are there any descriptions of the meaning of each field? I basically want to grep the files to find what has been updated and changed.


The audit file is a raw dump of events, as documented in

1 Like

Thanks, exactly what I was looking for. Now just need to read through and script it!

1 Like