Hello Moveworks community,
We're excited to announce a new troubleshooting tool in Moveworks Setup: API Audit Logs. Partners and customer admins now have full visibility into every external API call Moveworks makes on your behalf — including the URL, HTTP method, response code, and full request/response payloads. (Only for built-in plugins)
What Are API Audit Logs?
Every time Moveworks calls an external system — your ticketing platform, identity provider, software provisioning tool, or live agent system — that call is now logged and surfaced in real time. Logs are captured near-instantly, as soon as a conversation or workflow execution completes.
You can find them at: Moveworks Setup → Organizational Details → Audit → API Logs
Note: API Audit Logs cover external API calls made by Moveworks built-in skills only. For Agent Studio workflows, you can refer to Agent Studio Logs.
What's Covered
Logs are captured across eight skills:
- Ticketing — filing, resolving, reopening, and commenting on tickets
- Live Agent — connection requests and session termination
- Approvals — end-user updates to approval records
- Group Operations — creating groups, adding and removing members
- Account Operations — password updates and account unlocks
- Software Operations — software provisioning attempts
- System — internal Moveworks calls, such as connector validation
- Enterprise search & Forms - API calls routed to ticket action service for fetching ticket details
Each domain maps to a plugin, and logs surface every GET, POST, or PUT call that occurs across its workflows.
Key Use Cases
Debugging failures — When a ticket creation, live agent connection, or software provisioning action fails, use the request and response payloads to identify exactly what was sent to your external system and where it broke down.
Validating configurations — Confirm that your configured workflows are functioning as expected end-to-end. For example, verify that Okta group provisioning is being called with the correct payload based on your Moveworks Setup configuration.
Access & Permissions
Access is governed by the Moveworks Setup PII Viewer role:
- All Moveworks Setup users can access the API Audit Logs page and see which API calls are being made.
- Super Admins and Admin/User + PII Viewer role users can view fully un-redacted payload details — including query parameters, request bodies, and response bodies.
- Admin and User role users without PII Viewer will see all payload details redacted.
Super Admins can grant the PII Viewer role to any user via Roles & Permissions in the App Viewer. If you need access, reach out to your Super Admin.
A Note on the Trace ID Filter
The Trace ID (Root UUID) filter does not pre-populate values in the dropdown due to high data volume and near-instant refresh rates. To search for a specific trace, copy and paste the Trace ID directly into the filter field.
Help documentation: https://docs.moveworks.com/service-management/moveworks-setup/audit-logs-1/api-audit-logs