• Share Ideas, Start Something Good.

IAM Audit Logs

  • date 13th April, 2021 |
  • by Prwatech |
  • 0 Comments

Logging and monitoring in IAM

 

Logging and monitoring play critical roles in Identity and Access Management (IAM) within Google Cloud Platform (GCP), providing visibility, auditability, and security for access control activities. IAM logging and monitoring enable organizations to track changes to permissions, monitor access attempts, and detect potential security threats in real-time.

Within GCP, IAM logging allows organizations to record and analyze events related to identity and access management, such as changes to IAM policies, role assignments, and authentication events.

Additionally, IAM logging helps organizations meet compliance requirements by providing an audit trail of access control activities. 

Prerequisite

Hardware : GCP

Google Account

IAM logs every details of someone who is interacting with the GCP Console.

It is used to get the answers about the questions like "Who did it?", "What they did?", "When they did?"

To see the Audit Logs,

Open Menu > IAM & Admin > Audit Logs

It will show the Audit Logs.

Click on Default Audit Config

In the Log Type, select the Audit Logging options which you don't want to generate. Click Save

It will disable the logging for the selected services.

Extempted users are the ones whose logging details are not generated.

Click on Extempted Users > Add Extempted User

Add the user mail-id. Select the Log Types. Click done and click save.

 

[ssba-buttons]
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Filter by Categories
Amazon Athena
Amazon DynamoDB
Amazon EC2
Amazon ElastiCache
Amazon EMR
Amazon RDS
Amazon Redshift
Amazon Route 53
Amazon Simple Queue Service (SQS)
Amazon Simple Storage Service (S3)
Amazon Virtual Private Cloud (VPC)
Apache Spark
Apache Spark CASSANDRA
Apache Spark INTRODUCTION
Apache Spark KAFKA
Apache Spark RDD
Apache Spark SCALA
Apache Spark SQL
AWS
AWS Elastic Load Balancing
AWS Identity and Access Management (IAM)
AWS Introduction
AWS Lambda
AZURE
Azure Architectural Components
Azure Compute Services - 2
Azure Compute Services Part - 1
Azure networking services
Azure Serverless Technologies
Azure Storage Services
BIGQUERY
Cassandra
Cassandra Modules
Cloud fundamental concepts - 2
Cloud Fundamental Concepts -1
CLOUD SQL
CLOUD STORAGE
Data Science
Data Science Modules
DATAFLOW
DATAPROC
Elasticsearch 
Elasticsearch Modules
Getting Started with Cloud
GitHub
GitHub Modules
GitLab
GitLab Modules
Golang
Golang Modules
Google Cloud Platform
Hadoop
Hadoop Admin
Hadoop Admin Modules
HBase
HDFS
HIVE
IAM
INSTANCE
Interview Questions
Interview Questions
KUBERNETES
Linux
LINUX ARCHITECTURE
LINUX COMMANDS
LINUX FILE SYSTEM
LINUX INTRODUCTION
Machine Learning
MACHINE LEARNING MODULES
MapReduce
Module 1
Module 2
Module 3
Module 4
MySQL 
MYSQL BASIC COMMANDS
MySQL DATA TYPES
MySQL INTRODUCTION
NETWORKING
Pig
Power BI
PUBSUB
Python
PYTHON DATA TYPES
PYTHON DATA VISUALIZATION
PYTHON EXCEPTION HANDLING
PYTHON FILE HANDLING
PYTHON FUNCTIONS
PYTHON INTRODUCTION
PYTHON NumPy
PYTHON OOPS
PYTHON PANDAS
PYTHON VARIABLES
R Programming
R Programming
Scala 
Scala Modules
Software Installation
Software Installation Modules
Sqoop
Statistics
Statistics Modules
Tableau 
Tableau Calculations
Tableau Charts
Tableau Filters
Tableau Formatting
Tableau Groups
Tableau Introduction
Tableau Parameters
Tableau Sets
Troubleshooting
Troubleshooting Modules
YARN

Recent Blogs


Take a Big Step in Your Career

    Quick Support

    image image