检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
After Transfer to OBS is enabled, audit logs can be periodically transferred to OBS buckets. Enable Create a cloud service agency. After enabling Transfer to OBS, you must select Create a cloud service agency.
Other APIs Querying the Tracker Quota of a Tenant Querying All Operations on a Cloud Service Querying Audit Log Operators Checking Whether Data Can Be Transferred to the Configured OBS Bucket Querying the Resources Involved in the Traces Parent topic: V3 APIs (Recommended)
Connection with your own audit system: You can synchronize all audit logs to your audit system in real time to analyze the API calling success rate, unauthorized operations, security, and costs.
Connection with your own audit system: You can synchronize all audit logs to your audit system in real time to analyze the API calling success rate, unauthorized operations, security, and costs. Constraints SMN sends key event notifications to subscribers.
It is an essential part of security risk control for information systems in enterprises and public sectors, and is also necessary for compliance with many industry standards and audit specifications.
This section describes how to monitor your Huawei Cloud account using the operation audit and audit log transfer to LTS functions in CTS, and how to use the log alarm function of LTS to generate alarms. Preparations Add the CTS and LTS operation permissions to the user.
This section describes how to use the operation audit and audit log transfer to LTS functions of CTS to monitor access key-related traces, and how to use the log alarm function of LTS to generate alarms. Preparations Add the CTS and LTS operation permissions to the user.
This can be used for security analysis, compliance audit, resource tracking, and fault locating. This section describes how to use operation audit and key event notification of CTS to monitor the operation of creating an IAM user and send an alarm by email.
Other APIs Other CTS APIs, including those for querying the tracker quota, querying all operations on a cloud service, querying audit log operator list, checking whether data can be transferred to the configured OBS bucket, and querying the resources involved in the traces.
The operator information reported to CTS audit logs varies depending on the operators identity.
With CTS, you can record operations associated with CTS itself for later query, audit, and backtracking.
With CTS, you can record operations associated with CTS itself for later query, audit, and backtracking.
With CTS, you can record operations associated with CTS itself for later query, audit, and backtracking.
This section describes how to use the operation audit and trace filtering and querying functions of CTS to monitor DEW key usage. Preparations Add CTS operation permissions.
For details about DEW audit operations, see Operations supported by CTS. Deselect Exclude DEW traces On the Configure Transfer page, set parameters as follows and click Next > Configure.
Then the delegated administrator account can implement cloud audit capabilities, such as security audit. Constraints Only one organization tracker can be enabled for an organization.
This section describes how to use CTS to audit EVS creation and deletion operations performed in the last two weeks.
This section describes how to use CTS to audit EVS creation and deletion operations performed in the last two weeks.
By default, CTS does not record query operations because these are very frequent (such as querying a list of ECSs, metrics, or logs multiple times a day) and can generate a large volume of audit logs, making it difficult to find relevant information.
You have planned an OBS bucket for the delegated administrator to store audit traces. Configuring an Organization Tracker Log in to the management console. Click in the upper left corner to select the desired region and project.
