Track user access

Power Apps and Power Automate activities can be tracked and viewed from the Office 365 Security & Compliance Center. This allows tracking when apps or flows are created, edited, or deleted along with other key activities. These logs can be used manually for discovery and review and can also be accessed via API to automate more complex scenarios.

The following are the Power Automate and Power Apps activities that are logged:

Power Automate

Power Apps

  • Created flow
  • Edited flow
  • Deleted flow
  • Edited permissions
  • Deleted permissions
  • Started a paid trial
  • Renewed a paid trial
  • Created app
  • Edited/saved app
  • Published app
  • Deleted app
  • Restored an app from app version
  • Launched app
  • Marked app as featured
  • Marked app as hero
  • Edited app permissions
  • Deleted app permissions

Important

In order to take advantage of the activity logging, you must turn on audit logging in the tenant before data is available for viewing.

This is completed via the following PowerShell commands. More information: Turn Audit Log Search On or Off. It might take several hours after you turn on audit log search before you can return results when you search the audit log.

Enable-OrganizationCustomization
Set-AdminAuditLogConfig -UnifiedAuditLogIngestionEnabled $true

A Microsoft Power Platform or Dynamics 365 Service admin can be granted permission to view audit log entries.

Add-RoleGroupMember "Compliance Management" -Member user1

Note

This will give the user access to view all audit log entries. There's no way to restrict access to only view Power Apps and Power Automate log entries.

If your organization uses a Security Information and Event Management (SIEM) server, you can learn how to enable integration with activity logging. More information: SIEM Server Integration

You might also find Microsoft Purview Compliance Manager helpful to manage your compliance efforts across Microsoft cloud services in a single place. More information: Compliance Manager

As an administrator, you should:

  • Carefully think about audit data via Office 365 Security & Compliance Center in addition to other mechanisms for monitoring. You can create new alert policies to help ensure the overall health of your citizen app development platform.
  • Further explore Power Automate capabilities that can help you automate additional steps for ensuring Microsoft Power Platform service health.