As an administrator, you can keep track of user sign-ins and sign-outs. You can analyze this data to help make accounts more secure.
Once you turn on Allow user sign-in data in Control Hub, user sign-ins and sign-outs are logged and can be retrieved through the public API. You can then view and analyze the data in security applications such as UEBA and SIEM, which can run their machine learning algorithms to discover suspicious and malicious behaviors, detect attack vectors, and identify compromised passwords.
Webex stores the data for 12 months.
Sign in to Control Hub, then under Management, select Organization Settings.
In the User sign-in data section, toggle on Allow user sign-in data.
Go to List Security Audit Events to retrieve the data.