Who logged in, from where, and what did they change
Unified change audit, live session control, and threat detection in one Odoo app — with a one-click session kill, field-level history, and separation-of-duties permissions built in from day one.
Odoo scatters login records, chatter trails, and access history across separate screens with no first-class session or audit concept. Compliance-only apps track changes but cannot stop an active threat; premium security apps add a session kill-switch but price out the SMB market and skimp on change history. No single app answers all three questions at once.
One app that unifies change-audit, session control, and threat detection: field-level CRUD history, a live session dashboard with a prominent one-click "End session" action, login/failed-login tracking with geolocation and anomaly flags, and separation-of-duties permissions so whoever reads the trail can never erase it.
Compliance and security, in one dashboard
Every capability below is implemented in the module.
Field-Level Change Audit
Logs create, write and delete operations across tracked models with an old-to-new value diff on every changed field, so you have concrete evidence, not just a record that "something changed."
Live Active-Session Dashboard
A kanban view of every currently connected user and session, with anomalies highlighted, so administrators see system state at a glance instead of inferring it from logs.
One-Click Session Termination
End any suspicious or unauthorized session immediately from the live dashboard — the control that turns a passive log into an active security response.
Login & Failed-Login Audit
Every authentication event is timestamped and logged, with failed attempts tracked separately from successes so brute-force and credential-stuffing patterns are visible instead of hidden inside a success-only log.
Device, IP & Geolocation Capture
Stores user-agent, parsed device details, IP address and resolved geographic origin for every login, so unfamiliar devices and locations are immediately visible without external tooling.
Anomaly & Impossible-Travel Detection
Flags unusual logins — new device, new location, failed-attempt clusters, and geographically impossible consecutive logins — directly on the session and login records, so threats surface instead of being buried in text.
Separation-of-Duties Permissions
Log viewers get read-only access; deleting audit records is held to a distinct privileged role, so the audit trail can never be erased by everyone who can read it.
Selective Tracking Rules & Templates
A settings UI lets you choose exactly which models and fields are audited, with ready-made templates (such as Partner & Contact Records, Users & Access Rights) as a starting point, so logs stay relevant instead of ballooning into noise.
Retention Pruning & Compliance Export
A configurable retention period automatically prunes old entries to keep the audit store performant, and a one-action wizard exports evidence filtered by user, model, or operation for auditors — scoped per company.
How it works
Configure Tracking
Apply a built-in template or pick the models, fields and operations to audit.
Work Continues Normally
Logins, sessions and every tracked change are captured automatically in the background.
Monitor & Respond
Review the live dashboard, spot anomalies, and end a suspicious session in one click.
Export Evidence
Generate a compliance report filtered by user, model or operation, ready to hand to an auditor.
See it in action
Real screens from the module, captured on Odoo.
Live Sessions dashboard: every active session on one kanban board, with anomalies highlighted for immediate attention.
All Sessions list covering active, closed and terminated states for full session history.
Session form flagged with an Anomaly ribbon, showing the full anomaly reason for review.
Login History list showing success, failed and logout events with anomaly toggles.
Login History graph, tracking failed, successful and logout events by day.
Failed Logins view, filtered to surface brute-force and credential-stuffing patterns.
Audit Logs list, grouped by user, recording real create, write and delete operations.
Audit Logs pivot view, cross-tabulating operation type against user for fast analysis.
Audit Log form flagged Sensitive, with a full field-level old-to-new value diff table.
Compliance Report wizard: export audit evidence filtered by user, model and operation.
Tracking Rules list showing selective, model-scoped audit configuration in effect.
Ready-made Tracking Templates that apply a complete audit configuration in one click.
General Settings tab covering retention period, idle timeout, failed-attempt threshold, notification mode and geolocation.
Frequently asked
Can a user who views the audit log also delete it?
No. Audit-log viewers get read-only access; deleting audit records is held to a separate, more privileged role, so the trail cannot be erased by everyone who can read it.
Does it detect impossible-travel logins?
Yes. Consecutive logins that are geographically impossible within the elapsed time are flagged as an anomaly on the session and login records, alongside new device, new location and failed-attempt-cluster detection.
Can I choose exactly which models and fields are tracked?
Yes. Tracking Rules let you pick the models, fields and operations to audit, and built-in Tracking Templates apply a complete, ready-made configuration in one click so logs stay relevant rather than logging everything by default.
Does this work across multiple companies?
Yes. Tracking configuration and audit reporting are scoped per company, so multi-entity deployments get clean, isolated audit views.
Get in Touch
Have questions or need customization? Every purchase includes 30 days of free support — we are here to help.
Visit Our Website
www.cerevantix.comExplore our apps, services, and portfolio.
Empowering growth through technology.
Unified change audit, live session control, and threat detection for Odoo — one coherent app instead of three.
| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 1738 |
| Technical Name |
cerevantix_advanced_user_activity_audit |
| License | OPL-1 |
| Website | https://www.cerevantix.com |
Odoo Proprietary License v1.0 This software and associated files (the "Software") may only be used (executed, modified, executed after modifications) if you have purchased a valid license from the authors, typically via Odoo Apps, or if you have received a written agreement from the authors of the Software (see the COPYRIGHT file). You may develop Odoo modules that use the Software as a library (typically by depending on it, importing it and using its resources), but without copying any source code or material from the Software. You may distribute those modules under the license of your choice, provided that this license is compatible with the terms of the Odoo Proprietary License (For example: LGPL, MIT, or proprietary licenses similar to this one). It is forbidden to publish, distribute, sublicense, or sell copies of the Software or modified copies of the Software. The above copyright notice and this permission notice must be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
Please log in to comment on this module