{"id":61081,"date":"2021-02-17T05:42:26","date_gmt":"2021-02-17T13:42:26","guid":{"rendered":"https:\/\/devblogs.microsoft.com\/devops\/?p=61081"},"modified":"2022-10-10T07:54:18","modified_gmt":"2022-10-10T15:54:18","slug":"billing-and-token-management-events-now-available-in-auditing","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/devops\/billing-and-token-management-events-now-available-in-auditing\/","title":{"rendered":"Billing and Token Management events now available in Auditing"},"content":{"rendered":"<p>Since <a href=\"https:\/\/devblogs.microsoft.com\/devops\/auditing-for-azure-devops-is-now-in-public-preview\/\">releasing the auditing feature<\/a> in Azure DevOps, we\u2019ve heard continued interest from you on other events you would like to see appear in your logs. Such events enable your teams to better monitor activities and changes that happen within your organizations and get ahead of any potential security breaches.<\/p>\n<p>We\u2019re happy to announce two new event types are now available in the auditing logs:<\/p>\n<ul>\n<li>Billing setup and management events<\/li>\n<li>Personal Access Tokens (PATs) and SSH Keys management events<\/li>\n<\/ul>\n<hr \/>\n<h2>Billing setup and management events<\/h2>\n<p>To view any billing-related changes in Azure DevOps, you traditionally would have needed to check the Azure portal for a general idea of when billing for a certain meter started, which requires multiple steps and specific subscription permissions.<\/p>\n<p>There are three main categories of newly audited billing events now available:<\/p>\n<ul>\n<li>Subscription changes, which includes the linking of a subscription for the first time, changing of subscriptions, and the unlinking and opting out of billing<\/li>\n<li>Pipeline purchases, and<\/li>\n<li>Max quantity changes for usage-based meters, such as Artifacts and Cloud Load Testing<\/li>\n<\/ul>\n<p><a href=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/billing.png\"><img decoding=\"async\" width=\"1815\" height=\"618\" src=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/billing.png\" alt=\"Billing Events in Auditing\" class=\"alignnone size-medium wp-image-61083\" srcset=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/billing.png 1815w, https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/billing-300x102.png 300w, https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/billing-1024x349.png 1024w, https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/billing-768x262.png 768w, https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/billing-1536x523.png 1536w\" sizes=\"(max-width: 1815px) 100vw, 1815px\" \/><\/a><\/p>\n<h2>PAT and SSH Keys management events<\/h2>\n<p>Personal Access Tokens (PATs) and SSH Keys enable you and your teammates to authenticate with Azure DevOps in a non-interactive way. Many of you have expressed the need to to understand by whom and how these tokens are used, in order to prevent malicious activity by unauthorized users. With this release, new events will be added to the Auditing Logs whenever these tokens are successfully created, updated, revoked and\/or removed.<\/p>\n<p><a href=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/pat-mgmt.png\"><img decoding=\"async\" width=\"1539\" height=\"244\" src=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/pat-mgmt.png\" alt=\"Image pat mgmt\" class=\"alignnone size-medium wp-image-61084\" srcset=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/pat-mgmt.png 1539w, https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/pat-mgmt-300x48.png 300w, https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/pat-mgmt-1024x162.png 1024w, https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/pat-mgmt-768x122.png 768w, https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2021\/02\/pat-mgmt-1536x244.png 1536w\" sizes=\"(max-width: 1539px) 100vw, 1539px\" \/><\/a><\/p>\n<h2>Coming next to Auditing<\/h2>\n<p>We\u2019ll be looking at getting even more events into your auditing logs, so that your teams have the data they need to ensure that your organizations are secure against unauthorized usage by malicious actors.<\/p>\n<p>Be on the lookout for updates in the Dev Blogs here.<\/p>\n<hr \/>\n<p>To see these new events, head over to the Auditing page through your Organizations\u2019 settings page. For additional information on these new events and all available events in your auditing logs, please <a href=\"https:\/\/docs.microsoft.com\/azure\/devops\/organizations\/audit\/azure-devops-auditing\">see our documentation<\/a>.<\/p>\n<p>We\u2019d love to hear your feedback on these continued improvements we\u2019re bringing to auditing on Azure DevOps! You can share your thoughts directly with the product team using <a href=\"https:\/\/twitter.com\/AzureDevOps\">@AzureDevOps<\/a>, <a href=\"https:\/\/developercommunity.visualstudio.com\/spaces\/21\/index.html\">Developer Community<\/a>, or by commenting on this post below.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We\u2019re happy to announce two new event types are now available in the auditing logs: (1) Billing setup and management events, and (2) Personal Access Tokens (PATs) and SSH Keys management events.<\/p>\n","protected":false},"author":43580,"featured_media":61103,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-61081","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-devops"],"acf":[],"blog_post_summary":"<p>We\u2019re happy to announce two new event types are now available in the auditing logs: (1) Billing setup and management events, and (2) Personal Access Tokens (PATs) and SSH Keys management events.<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/posts\/61081","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/users\/43580"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/comments?post=61081"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/posts\/61081\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/media\/61103"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/media?parent=61081"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/categories?post=61081"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/tags?post=61081"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}