> For the complete documentation index, see [llms.txt](https://documentation.immuta.com/saas/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://documentation.immuta.com/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit.md). # Audit Immuta provides robust audit logging on actions within the application and on queries in native technologies like Snowflake, Databricks, and Unity Catalog. Users with the audit permission can view the audit page in Immuta and export audit logs to S3 or ADLS Gen2. ## How-to guides * [Export audit logs to S3](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/how-to-guides/enable-uam.md): Use the CLI or GraphQL to export Immuta audit logs to S3. These logs can then be stored long-term, used for compliance, or viewed in analytic platforms. * [Export audit logs to ADLS Gen2](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/how-to-guides/export-adls.md): Use the CLI or GraphQL to export Immuta audit logs to ADLS Gen2. These logs can then be stored long-term, used for compliance, or viewed in analytic platforms. * [Run governance reports](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/how-to-guides/governor-guide.md): Create a governance report in the Immuta UI to understand the state of your Immuta environment. ## Reference guides * [Audit overview](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/index.md): This reference guide describes Immuta's universal audit model, the events available in this model, and the recommended audit workflow. * [UAM schema reference guide](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/index/uam-schema.md): This reference guide lists the UAM events and examples of the logs. * Query audit logs: These reference guides describe the audit available for the specific integration, details about enabling and configuring audit, and an example schema. * [Snowflake audit logs](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/query-audit-logs/snowflake.md) * [Databricks Unity Catalog audit logs](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/query-audit-logs/databricks-uc.md) * [Databricks Spark audit logs](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/query-audit-logs/databricks.md) * [Starburst (Trino) audit logs](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/query-audit-logs/trino.md) * [Audit export GraphQL reference guide](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/immuta-audit-export-to-s3-and-adls-gen2-graphql-reference-guide.md): This reference guide describes the commands available in the GraphQL for exporting audit logs. * [Governance reports](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/reports.md): This reference guide describes the different reports available in Immuta. * [Unknown users in audit logs](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/unknown-user.md): [Unity Catalog native query audit](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/reference-guides/query-audit-logs/databricks-uc.md) brings in audit information for all tables and data sources, so some audit logs are created from activity by users not registered in Immuta. These audit records will appear in Immuta, providing valuable information of activity, with the username `Unknown`. This guide illustrates how to determine the username of these `Unknown` users and register them in Immuta. ## Deprecated audit guides ### How-to guide [Download audit logs](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/deprecated-audit-guides/view-audit-logs.md): Download Immuta legacy audit logs through the API. ### Reference guide [Legacy to UAM Migration](/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit/deprecated-audit-guides/legacy-migration.md): Understand the audit events from UAM that map to legacy audit events. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://documentation.immuta.com/saas/~/changes/l3NnvynMHxi6VvqRtJhK/detect-your-data/audit.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.