---
title: Managing session logs
description: If session logging is enabled for your tenant, PingOne Privilege records all SSH and database sessions.
component: privilege
page_id: privilege:privileged-access-management:admin-tasks/activity/session-logs
canonical_url: https://docs.pingidentity.com/privilege/privileged-access-management/admin-tasks/activity/session-logs.html
section_ids:
  enabling-session-logs: Enabling session logs
  viewing-session-logs: Viewing session logs
---

# Managing session logs

PingOne Privilege provides comprehensive logging and auditing capabilities that give administrators full visibility into user activity and system events. These logs are essential for security monitoring, compliance, and troubleshooting. Because the PingOne Privilege authenticator app is bound to the device's Trusted Platform Module (TPM), every action is cryptographically signed, creating a non-spoofable audit trail of user activity.

If session logging is enabled for your tenant, PingOne Privilege records all SSH, database, RDP, Kubernetes, ECS, and MCP sessions. These logs provide a detailed audit trail of user activity for compliance and troubleshooting purposes.

## Enabling session logs

1. Click your user profile in the top right corner.

2. Click **Settings**.

3. Under **Tenant Information**, toggle on **Session Logging** and **RDP Recording**.

## Viewing session logs

To view session logs:

1. In the PingOne Privilege admin console, go to **Activity > Session Logs**.

2. Use the available filters to search the logs or narrow the results by a specific time frame, resource, user, or audit status.

3. Click any log entry in the list to view its details, including a session recording if available.

   ![Image shows an example log displaying commands executing during a session.](../../_images/session-logs-1.png)