Audit user actions to detect risks, comply with data security requirements, and improve support services. Log all user activity, record remote sessions, and set user policies for complete audibility and visibility of who is doing what, when, and for how long.
With TeamViewer Tensor, you can ensure your enterprise stays compliant with security protocols and internal requirements while detecting security risks before they impact your business. Built-in reporting log captures all remote session activities and Management Console actions: who did what, when, and for how long for every incoming and outgoing connection.
Critical for security purposes, these audit logs can only be viewed by designated IT admins with appropriate user permissions.
This article applies to all TeamViewer customers with a Tensor license, using TeamViewer version 14.1 or higher and running Windows, Mac, and Linux.
By default, event logging is not activated for your company, as you should get general consent within your company about the collection and usage of the data.
Activating event logging can only be done as a company admin.
To activate event logging, please follow the instructions below:
Now, certain activities of all users that belong to your company will be logged.
Your company admin can grant you access to the Event Log dialog page by creating a role with the Event Logs permission checked on.
Hint: For more details about creating and managing user roles, please check our dedicated article: Roles
When you have access to your company's event logs, go to Event logs in the left navigation panel of the Admin settings.
If event logging is active for your company, you will see the following screen:
You can now start to search for specific events by using the given filter possibilities:
Now, you can click on single events to see more details for each event.
With Incoming connection logging, you can audit what happened during the connections to the end user's devices.
Incoming connections logged via Auditability can be found in the Event Log by looking for entries with a TeamViewer ID as Author.
Incoming connection
The device that got accessed
The device the connection came from
Active permissions
Note: File transfers are also logged for incoming connections.
When you have access to the event logs of your company, navigate to Event logs on the left navigation panel at https://web.teamviewer.com/ or via the client.
To download events, apply your filters and click "Download Events" afterward. You will receive a CSV file containing the filtered events.
We recommend importing the CSV file into Excel to have a good overview of all the downloaded events.
The CSV file contains multiple columns that provide details about the recorded event. The following columns exist:
Event data during remote control sessions are only collected from users authenticated as company member that has enabled event logging.
Examples of a remote control session with two users:
All event data is logged on TeamViewer servers (in Frankfurt) for one year. This retention period can't be changed. After one year, all data will be automatically and completely deleted.
The event log can also be retrieved via the REST API. You will find more information here: Use the TeamViewer API
This is the list of events TeamViewer catches and stores: