The Event Logs section in Trio is a centralized audit trail that records every significant activity across your organization’s environment. It provides a transparent view of administrative, user, and system-level actions, helping IT teams maintain accountability, detect anomalies, and ensure compliance with security standards.
Event Logs are particularly valuable in environments where multiple administrators manage policies, users, and devices. By maintaining a complete history of actions—such as logins, password resets, policy updates, and device commands—organizations can trace back events to their origin and verify whether changes were intentional or potentially malicious.
This functionality supports both day-to-day monitoring and long-term compliance needs, making it an essential tool for IT admins, auditors, and security officers alike.
Key Features
The Event Logs interface in Trio comes with a rich set of features designed to maximize visibility and control:
Complete Activity Records
Every event is logged with full detail, covering both routine actions (like a user login) and critical changes (such as device wipes or admin role adjustments).Categorized Logs
Events are grouped under categories such as Authentication, Users, Groups, Devices, Integrations, Software, and Platform Adjustments. This makes it easy to filter and review specific types of activity.Admin Context
Each record shows which admin performed the action, along with their role (e.g., Super Admin, IT Admin L2, or a Custom Role). This ensures accountability and helps enforce role-based access controls.Precise Time Stamps
Actions are time-stamped to the exact date and time, enabling admins to reconstruct timelines during investigations or audits.Advanced Filtering & Sorting
Logs can be narrowed down using filters for event name, category, admin, or date range, ensuring quick access to the most relevant data. Sorting options (e.g., by name or time) make it easier to organize large datasets.Export Capability
Event logs can be exported for offline analysis, compliance documentation, or integration with third-party monitoring tools.
Filtering and Searching
With potentially thousands of events logged over time, filtering is essential. Trio offers a multi-layer filter system that lets you refine searches with pinpoint accuracy:
By Event Name – Quickly locate specific actions like Device Locked or Certificate Renewed.
By Category – Narrow down to Authentication, Groups, Devices, or other categories.
By Admin – Track actions performed by a particular administrator.
By Date Range – Focus on a defined period, which is especially useful during incident investigations or compliance reviews.
Filters can be applied individually or in combination. For example, you can filter by Authentication events performed by e.g. Ruben Rosser within the past 7 days.
Types of Events Tracked
The Event Logs capture a wide range of activities, including but not limited to:
Authentication Events
Login attempts (successful/failed)
Password resets
Platform Adjustments
Organization logo updates
Certificate renewals
User Management
Importing users from CSV
Quick user add
User onboarding
Group Management
Groups created, removed, or updated
Admins reassigned or removed from groups
Device Commands
Device locked or wiped
Profile updates applied
Integration Updates
Services connected, updated, or disconnected
This level of detail allows admins to understand not just what happened, but why and by whom.
Exporting Event Logs
The Export feature allows admins to extract logs for:
Compliance audits (e.g., ISO 2020, HIPAA, CIS standards)
Security incident reviews
Management reporting
Long-term archiving
Exports ensure organizations can meet external audit requirements and preserve critical event history outside the Trio platform.
Why Event Logs Are Critical
Maintaining detailed event logs is not just a best practice—it’s a necessity in modern IT environments. Here’s why:
Accountability – Ensures admins are held responsible for their actions.
Transparency – Provides full visibility into changes made across the system.
Security – Helps detect suspicious activities such as unauthorized logins or sudden device wipes.
Compliance – Meets audit requirements for standards like ISO 2020, HIPAA, or CIS benchmarks.
Operational Insights – Reveals patterns in administrative and user behavior, aiding process improvements.