Yandex Audit Trails allows you to collect audit logs about events happening to Yandex.Cloud resources and load these logs to the user's bucket for further analysis or export.
Yandex.Cloud services whose audit logs Audit Trails collects:
- Compute Cloud.
- Identity and Access Management.
- Key Management Service.
- Object Storage.
- Resource Manager.
- Virtual Private Cloud.
The following events are logged:
- Modifying operations with a service resource.
- Issuing an IAM token for a federated account.
A trail is a Yandex Audit Trails resource responsible for collecting audit logs and uploading them to Object Storage.
You can specify what event types and source services need to be logged. Events are collected from resources in the same cloud as the trail. Events are buffered by the Audit Trails service and are saved to a JSON file once every 5 minutes in the specified bucket. For information about the file format, see Audit event log.
Current service limitations
For more information about service limits, see Quotas and limits.