To change Power BI audit log settings to retain audit logs, you need to configure the retention settings within the Microsoft 365 compliance center, as Power BI audit logs are part of the broader Microsoft 365 auditing and compliance framework. Here’s a step-by-step guide to ensure audit logs are retained for the desired period:
Step-by-Step Guide
1. Access the Microsoft 365 Compliance Center
- Navigate to the Microsoft 365 Compliance Center.
- Log in with an account that has the necessary administrative privileges (e.g., Global Administrator, Compliance Administrator).
2. Navigate to the Audit Log Settings
- In the left-hand navigation pane, click on “Audit”.
- If it’s your first time here, you may need to enable audit logging by clicking on the “Start recording user and admin activity” button.
3. Configure Audit Log Retention
- Click on “Audit retention policies” in the Audit section.
- You will see existing retention policies. To create a new policy, click on “+ New retention policy”.
4. Create a New Audit Log Retention Policy
- Name your policy: Give your policy a descriptive name and an optional description.
- Set retention duration: Specify how long you want to retain the audit logs. Microsoft 365 allows setting different retention periods based on your subscription and compliance requirements.
- Define the scope: Choose whether to apply this policy to all users or specific groups/users.
- Audit log type: Ensure that the policy includes Power BI audit logs. You may need to include other relevant services as needed.
5. Apply the Policy
- Review your settings.
- Click “Save” to create and apply the retention policy.
Verifying Audit Log Retention
After setting up the retention policy, you should verify that it’s applied correctly and that audit logs are being retained as per the new settings.
1. Review Applied Policies
- Go back to the “Audit retention policies” section to see the list of applied policies.
- Ensure your newly created policy is listed and active.
2. Check Audit Log Retention
- In the Microsoft 365 Compliance Center, navigate to “Audit”.
- Run an audit log search for Power BI activities.
- Verify that audit logs from the desired period are available.
Additional Considerations
- Audit Log Search: You can use the audit log search feature in the Microsoft 365 compliance center to retrieve specific audit logs. This feature allows you to filter logs based on date, user activity, and other criteria.
- PowerShell Management: You can also manage audit log retention policies using PowerShell for more advanced configurations. This requires using the Microsoft 365 Security & Compliance PowerShell module.
- Licensing Requirements: Note that the ability to retain audit logs for extended periods may depend on your Microsoft 365 licensing. Some advanced audit log retention capabilities might require a premium or add-on subscription.
PowerShell Example for Setting Retention Policy
# Connect to the Security & Compliance Center
Connect-IPPSSession
# Create a new audit retention policyNew-UnifiedAuditLogRetentionPolicy -Name “PowerBIAuditLogRetention” -Description “Retain Power BI audit logs for 365 days” -UnifiedAuditLogRetentionDuration 365 -Enabled $true
# Verify the new policy
Get-UnifiedAuditLogRetentionPolicy -Identity “PowerBIAuditLogRetention”
By following these steps, it will help you to ensure that Power BI audit logs are retained according to your organization’s compliance requirements.