Audit

PingOne logs two types of data that are governed by different retention policies:

User events

User events include user creation or deletion, authentications, updates to the user record, and other transactions related to end-user activity. User events are retained for 90 days.

PingOne admin console events

Configuration events include configuration changes made to system settings, policies, applications, an integrations. Configuration events are retained for 2 years.

PingOne DaVinci event data is not stored in PingOne. Learn more about DaVinci data retention and retrieval in Debugging and analytics in the DaVinci documentation.

You can run audit reports from Monitoring > Audit or using the PingOne APIs to view data about user and console events. You can run queries against a maximum of 14 days at a time.

To retain PingOne data for longer than the standard retention periods, set up webhooks to stream the data to your own repository and configure your own retention policy. Learn more in Webhooks.

Learn more

Learn more about PingOne logging and reporting capabilities in PingOne Platform logging and reporting.

Learn more about running audit reports in PingOne in the following topics:

Audit parameters
Running an audit report
Audit Activities in the PingOne API documentation