Enterprise 11: RBAC on Audit log
Audit is automated for all privileged and nonprivileged roles to conform to best practices, as defined in NIST AC-6.
Access is view-only based on a deny-all and allow by exception based on roles and domains as defined in the Audit section 7 addressing Audit and Accountability (NIST AU 1 through 15) and as required by NIST AC-2 Automated System Account Management. If a role does not have permission to view Audit Logs, the Audit Trail tab is not visible to all members of that role. Audit automatically captures all events related to creation, modification, enablement, disablement, and removal of users, bots, Bot Creators, and Bot Runners.