Audit log entries are retained in the management console for one year. After one year, audit log entries are purged automatically and can no longer be viewed. If you want to retain audit log entries, you can export the records to a .csv file, or you can forward events to a SIEM solution or syslog server (for more information, see the Aurora Endpoint Security Syslog Guide).
In the management console, click > Audit Log.
In the filter fields, specify the criteria that you want to use to filter the audit log information.
To export the results to a .csv file, click . Select the scope of the export and click Export.
You can export a maximum of 50,000 records at once. You can see the number of results at the bottom of the screen. To export more than 50,000 records, you can filter the results (for example, by date) and export, then apply a different filter and export, and so on.
> Audit Log.
. Select the scope of the export and click Export.
You can export a maximum of 50,000 records at once. You can see the number of results at the bottom of the screen. To export more than 50,000 records, you can filter the results (for example, by date) and export, then apply a different filter and export, and so on.