View audit history for Azure AD roles in Privileged Identity Management

You can use the Privileged Identity Management (PIM) audit history to see all role assignments and activations within the past 30 days for all privileged roles. If you want to retain audit data for longer than the default retention period, you can use Azure Monitor to route it to an Azure storage account. For more information, see Archive Azure AD logs to an Azure storage account. If you want to see the full audit history of activity in your Azure Active Directory (Azure AD) organization, including administrator, end user, and synchronization activity, you can use the Azure Active Directory security and activity reports.

Follow these steps to view the audit history for Azure AD roles.

View resource audit history

Resource audit gives you a view of all activity associated with your Azure AD roles.

  1. Open Azure AD Privileged Identity Management.

  2. Select Azure AD roles.

  3. Select Resource audit.

  4. Filter the history using a predefined date or custom range.

    Resource audit list with filters

View my audit

My audit enables you to view your personal role activity.

  1. Open Azure AD Privileged Identity Management.

  2. Select Azure AD roles.

  3. Select the resource you want to view audit history for.

  4. Select My audit.

  5. Filter the history using a predefined date or custom range.

    Audit list for the current user

Next steps