Audit
Complete visibility into every action on your DataHub system.
Know exactly who did what, when, and from where. DataHub Audit provides a comprehensive, tamper-resistant record of all DataHub activity — from authentication attempts and configuration changes to connection events and process data modifications.
Whether you need to satisfy regulatory requirements, investigate a security incident, or simply understand what changed and why, DataHub Audit gives you the answers without adding external tools or infrastructure.
What Questions Can Audit Answer?
Security and Access – Who authenticated to the system in the last 24 hours, and from what IP addresses? Were there any failed login attempts this week? Which user accounts or permissions were recently created, modified, or deleted?
Configuration Changes – Who changed the MQTT Broker or OPC UA configuration, and when? What modifications were made to the security settings? What configuration files were added, renamed, or updated?
Connectivity – When did an OPC UA client connection last disconnect? Which incoming or outgoing connections were established or dropped today?
Data Point Changes – Who changed the setpoint for the boiler on line 2? What values were written to a critical data point over the past week?
How It Works
DataHub Audit captures system activity through four complementary mechanisms:
Audit Events
Predefined events raised by DataHub components whenever significant actions occur, such as authentication, configuration changes, plugin activation, and connection lifecycle events. Events are organized by category and by source component, giving you full control over what gets recorded.
Data Point Monitoring
In addition to system events, you can select individual DataHub data points and record every value change as an audit event. This lets you track modifications to critical process values like setpoints, control outputs, or alarm thresholds.
Local Storage
A built-in SQLite database persists all audit records locally, with configurable retention periods and automatic purging. Generate CSV reports for any date range directly from the interface, ready for external analysis or archival.
Git Configuration Tracking
An integrated local Git repository automatically commits every configuration file change, maintaining a complete, version-controlled history. You can see exactly what changed in each file, when, and by whom — with no external version control tools required.
Unique Advantages
- Built-in, nothing extra to install. Local SQLite storage and Git tracking are integrated directly into the DataHub. There are no external databases to configure, no third-party audit tools to license, and no additional infrastructure to maintain.
- Tamper-resistant by design. Lock the audit configuration so it can be expanded but never narrowed. Enable permanent lock for environments where the audit scope must remain fixed regardless of who has administrative access.
- Granular control. Select audit events by category (Security, Configuration, Connectivity, Application, Scripting, and more) or by source component. Enable an entire category to automatically capture any new events added in future updates, or select individual events for a focused audit trail.
- Process data accountability. Go beyond system events. Monitor the values of selected data points and record every change, giving you a clear record of who modified critical process data and when.
- Full configuration version history. Git tracking captures every configuration change as a commit with a timestamp and author. Compare any two points in time to see exactly what was added, modified, or removed across your entire configuration.
- Export-ready reporting, Generate CSV exports for any date range with a single click, making it easy to feed audit data into compliance reports, SIEM systems, or offline analysis workflows.
Compliance and Accountability
Regulated industries demand proof that systems are monitored and that changes are traceable. DataHub Audit provides the foundation for meeting these requirements: a persistent, tamper-resistant audit trail with full user attribution, timestamped records, and version-controlled configuration history. From security forensics to change management, every action is recorded and available for review.
More information
- Read the Audit documentation.

