If you are logged in as a User Administrator or an Audit user, you can see all the actions performed by all users (including all User Administrators) on your Keepit account.

If a user attempts to perform an action that is not allowed as per their assigned permissions, this event will be recorded as a denied action. (See also: What user roles are available in Keepit?)

The audit log records every time a user:

User events

• Signs in or has a failed sign in attempt
• Creates or deletes a new user
• User (that is not User Admin) changes own login or password
• User Admin edits own user information
• User Admin changes role, password, or expiration time of another user

Connector events

• Creates a new connector
• Updates a connector
• Deletes a connector
  

Backup/Restore

• Schedules a backup
• Schedules a restore (includes import)
• Schedules a selective restore

Misc.

• Creates a new SSO configuration
• Creates, updates, or deletes a shared link
• Downloads a file
• Downloads a folder as a .zip file
• Previews a file
• Browses data (i.e., enters a folder)
• Browses a shared folder

 See also: How to view audit logs