Backupify/Datto SaaS Protection: How do I access and interpret the System Events Report in Datto SaaS Protection 2.0?



How do I access and interpret the System Events Report in Datto SaaS Protection 2.0?


  • Datto SaaS Protection 2.0 for G Suite
  • Datto SaaS Protection 2.0 for Office 365


1. Access the System Events Report from the partner dashboard by clicking Admin→ Reporting.

o365_select_reporting.pngFigure 1: Access the System Events Report (click to enlarge)

2. Refine your System Events Report by filling out the following fields: 

  • Event ClassSelect whether the report should display System Events or User Actions. 
  • Date Range: Specify the desired date range. 
  • Event Type: Specify the type of action or event. 
  • Application: Select the desired product service. 
  • User: Specify which user you wish to include in the report.

o365_reporting_options.pngFigure 2: Refine your System Events Report (click to enlarge)

3. Select from one of the following viewing options:


The Summarize field summarizes data through table illustrations.

o365_reporting_summarize.pngFigure 3: View table illustrations of summarized data (click to enlarge)


View the data in table form (Figure 4).

o365_reporting_view.pngFigure 4: System Events Report in table form (click to enlarge) 


Download a CSV file of the system events report you requested. 

mceclip4.pngFigure 5: System Events Report as a CSV file (click to enlarge)

The System Event Report CSV file displays the following data:

  • EventClass: This field will always be system.
  • EventType: The type of job performed. Possible outcomes are:
    • Backup
    • Restore
    • Export
  • Timestamp: The time and date of the activity performed. The times are in UTC.
  • SuccessStatus: This field shows the overall success or failure of the EventType. Possible outcomes are:
    • Success: Indicates that the job (either a restore, export, or backup) was successful even if individual items failed
    • Failure: Indicates that the job (either a restore, export or backup) did not complete due to an error
  • ServiceId: The ID associated with the user or service on which the activity was performed. Provide this ID to Support whenever possible to quickly and accurately isolate any issues.
  • UserEmail: The primary email address of the user or site account on which the activity was performed.
  • UserName: The display name of the user or site account on which the activity was performed.
  • ItemSuccessCount: The number of items that were successfully captured, restored, or exported.
  • ItemFailure Count: The number of items that failed to be captured, restored, or exported.
  • ApplicationType: The application type affected by the action. Possible outcomes:
    • Office365SharePoint
    • Office365Exchange
    • Office365OneDrive
    • GoogleMail
    • GoogleCalendar
    • GoogleContacts
    • GoogleDrive
  • Snapshot: The internal snapshot ID associated with the action. The ID can be provided to Datto SaaS Protection Support to troubleshoot any issues (only applies to restores/exports).
  • RetrievalType: The criteria used to select data to restore or export. If data is based on search, see the SearchTerms column for the explicit search term (only applies to restores and exports). Possible outcomes:
    • Single User Search
    • Customer-Wide Search
    • Entire User
    • Multi-User Search
  • TargetServiceID: The user/service ID associated with the restore. Provide this ID to Datto SaaS Protection Support for troubleshooting assistance (only applies to restores).
  • TargetUserEmail: The primary email address associated with the restore (only applies to restores). Provide this email address to Datto SaaS Protection Support for troubleshooting assistance.
  • TargetUserName: The display name of the user/site to which the restore was pointed (only applies to restores).
  • SelectedItemCount: The number of items selected for restore/export actions (only applies to restores/exports).
  • FailureReason: If SuccessStatus is a failure, the column will include specific error code information detailing the cause of the failure. These are typically unactionable and included for informational purposes.
  • IncludePermissions: (Google Drive only) The field Indicates whether permissions are elected to be restored. Possible outcomes:
    • True
      • If True, permissions were restored
    • False
      • If False, permissions were removed


To contact Datto SaaS Protection support, click here to submit a Support Request, or click here for more contact options.

Was this article helpful?

0 out of 0 found this helpful

You must sign in before voting on this article.

Want to talk about it? Have a feature request?

Head on over to our Datto Community Forum or the Datto Community Online.

For more Business Management resources, see the Datto RMM Online Help and the Autotask PSA Online Help .

Still have questions? Get live help.

Datto Homepage