Hi Team,
Could you please share the retention policy document and specify how long session recording logs are stored?
Regards,
K.Sathiya
Question
Password Safe – Documentation on retention policies and session recording log storage duration
+1Password Safe Retention Policy Documentation
You did not indicate what version you are using. You can access the official Password Safe administration guides here:
These documents cover configuration, session monitoring, and retention settings.
Session Recording Log Retention
🔹 On-Premises Deployments
- Session recordings are retained on the appliance for up to 90 days.
- You can download recordings during this window via the
/logininterface or in bulk using the BeyondTrust Integration Client. - Many organizations extend retention by archiving recordings to a network share, allowing for an additional 90 days or more depending on storage and policy.
🔹 Cloud Deployments (Password Safe Cloud)
- Session recordings are stored for 1 year, and this duration is not configurable.
- Sessions older than 6 months are automatically archived, but can be restored and replayed within the 1-year window.
- Audit data can be exported via Reporting & Analytics or the REST API.
Where to Configure Retention
For on-prem setups:
- Go to
/login > Management > Security > Data Retentiontab. - This section allows you to configure how long different types of logs and recordings are retained.
Hi Frank Colvin,
Thank you for your response.
The Password Safe Admin Guide you shared was very helpful. I would now like your support regarding PRA.
Could you please share the retention policy document and specify how long the session recording logs are stored?
+1Here's a summary of the BeyondTrust Privileged Remote Access (PRA) session recording retention policies based on deployment type:
On-Premises Deployments
- Retention Duration: Session recordings are stored on the PRA appliance for up to 90 days.
- Extension Options:
- Retention cannot be extended directly within the PRA portal.
- To retain recordings longer, organizations must download them manually or use the BeyondTrust Integration Client to archive them to external storage (e.g., network shares).
Cloud Deployments (Password Safe Cloud)
- Retention Duration: Session recordings are stored for 1 year, and this duration is not configurable.
- Archiving Behavior:
- Sessions older than 6 months are automatically archived.
- Archived sessions can be restored and replayed within the 1-year window.
- Audit Data Access: Available via Reporting & Analytics or the REST API.
Where to Configure Retention (On-Prem)
- Navigate to:
/login > Management > Security > Data Retentiontab. - This section allows configuration of retention for various logs and recordings.
PRIVILEGED REMOTE ACCESS FOR ADMINS USER GUIDE | PRA On-prem
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.