davesmith87 I was taking a look at the Audit log today. It only states that a user viewed the credential page, but not necessarily what password/credential was viewed/copied. Knowing the specifics would be useful. This User Viewed This Password on Date/Time.