检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Obtain the latest digest file within the time range to be verified from the OBS bucket. Check whether the location where the digest file is stored in the OBS bucket matches with the location recorded in the file.
Other APIs Querying the Tracker Quota of a Tenant Querying All Operations on a Cloud Service Querying the Audit Log Operator List Checking Whether Data Can Be Transferred to the Configured OBS Bucket Querying the Resources Involved in the Traces Parent topic: V3 APIs (Recommended)
Data trackers record data traces, that is, logs of tenant operations (such as upload and download) on data in OBS buckets. This section describes how to use a data tracker. Creating a Tracker Configuring a Tracker Disabling or Enabling a Tracker Deleting a Tracker
Data trackers record data traces, which are operations performed by tenants on data in OBS buckets, such as upload and download. This section describes how to use the management tracker. Creating a Tracker Configuring a Tracker Disabling or Enabling a Tracker Deleting a Tracker
To store operation records for longer than seven days, you must configure transfer to OBS or Log Tank Service (LTS) so that you can view them in OBS buckets or LTS log groups.
To store operation records for longer than seven days, configure transfer to OBS or Log Tank Service (LTS) so that you can view them in OBS buckets or LTS log groups.
Set parameters in the request body as follows: POST /v1.0/{project_id}/tracker { "bucket_name": "obs-f1da", //Name of an OBS bucket to which traces will be transferred. This parameter is mandatory and its value is a string.
Trace transfer: Traces can be transferred to Object Storage Service (OBS) buckets periodically. During transfer, traces are compressed into trace files by service.
However, new traces recorded after you disable the tracker cannot be viewed and transferred to OBS or LTS, and key event notifications will not be sent. Prerequisites A data tracker has been created. Deleting a Data Tracker Log in to the management console.
However, new traces recorded after you disable the tracker cannot be viewed and transferred to OBS or LTS, and key event notifications will not be sent. Enable CTS again to restore the management tracker. Prerequisites You have enabled CTS.
CTS supports integrity verification of trace files for trackers configured with OBS transfer. Enabling Verification of Trace File Integrity Log in to the management console. Click in the upper left corner to select the desired region and project.
Other APIs Other CTS APIs, including those for querying the tracker quota, querying all operations on a cloud service, querying audit log operator list, checking whether data can be transferred to the configured OBS bucket, and querying the resources involved in the traces.
To obtain traces of the last seven days, use createServer as the keyword to query transferred traces in OBS buckets.
However, new traces recorded after you disable the tracker cannot be viewed and transferred to OBS or LTS, and key event notifications will not be sent. Prerequisites You have enabled CTS. Disabling or Enabling the Management Tracker Log in to the management console.
However, new traces recorded after you disable the tracker cannot be viewed and transferred to OBS or LTS, and key event notifications will not be sent. Prerequisites You have created a data tracker on the CTS console.
Audit logs of all members in the organization in the current region will be transferred to the OBS bucket or LTS log stream configured for the tracker. Helpful Links What Is Organizations? What Is a Trusted Service?
CTS constraints Item Constraints Maximum number of trackers that can be created by a single Huawei Cloud account Management tracker: 1 Data trackers: 100 Maximum number of key event notifications that can be configured by a single Huawei Cloud cloud account 100 Maximum number of OBS
Trace transfer: Traces can be transferred to Object Storage Service (OBS) buckets or Log Tank Service (LTS) log streams periodically. During transfer, traces are compressed into trace files by service.
To view traces of all accounts in the organization, go to the OBS bucket or the CTS/system-trace log stream configured for the organization tracker. Organization trackers rely on certain Organizations APIs to implement the multi-account management capability of Organizations.
Public services, such as Elastic Cloud Server (ECS), Elastic Volume Service (EVS), Object Storage Service (OBS), Virtual Private Cloud (VPC), Elastic IP (EIP), and Image Management Service (IMS), are shared within the same region.
