Help Center> Object Storage Service> Console Operation Guide> Cloud Trace Service
View PDF

Cloud Trace Service

Cloud Trace Service (CTS) records operations on cloud resources in your account. You can use the logs to perform security analysis, track resource changes, audit compliance, and locate faults.

Figure 1 CTS

Procedure

  1. Log in to the management console.
  2. In the upper left corner of the top navigation menu, click to select a region and project.
  3. Choose Service List > Management & Governance > Cloud Trace Service. The Trace List page is displayed.
  4. Configure the cloud audit for OBS by referring to Configuring a Tracker in the CTS User Guide.

    Table 1 OBS related management operations that can be recorded by CTS

    Tracker Type

    Operation

    Resource

    Trace Name

    Management

    Deleting a bucket

    bucket

    deleteBucket

    Management

    Deleting the CORS configuration a Bucket

    bucket

    deleteBucketCors

    Management

    Deleting the custom domain name configuration

    bucket

    deleteBucketCustomdomain

    Management

    Deleting the lifecycle configuration of a bucket

    bucket

    deleteBucketLifecycle

    Management

    Deleting a bucket policy

    bucket

    deleteBucketPolicy

    Management

    Deleting the cross-region replication configuration of a bucket

    bucket

    deleteBucketReplication

    Management

    Deleting the tag configuration of a bucket

    bucket

    deleteBucketTagging

    Management

    Deleting the static website hosting configuration of a bucket

    bucket

    deleteBucketWebsite

    Management

    Deleting bucket data

    bucket

    deleteBucketdata

    Management

    Creating a bucket

    bucket

    createBucket

    Management

    Configuring the bucket ACL

    bucket

    setBucketAcl

    Management

    Configuring the CORS rule for a bucket

    bucket

    setBucketCors

    Management

    Setting the custom domain name for a bucket

    bucket

    setBucketCustomdomain

    Management

    Configuring the bucket lifecycle rules

    bucket

    setBucketLifecycle

    Management

    Configuring the bucket logging function

    bucket

    setBucketLogging

    Management

    Configuring the event notification function for buckets

    bucket

    setBucketNotification

    Management

    Configuring the bucket policy

    bucket

    setBucketPolicy

    Management

    Configuring the bucket quota

    bucket

    setBucketQuota

    Management

    Configuring the cross-region replication function for buckets

    bucket

    setBucketReplication

    Management

    Configuring the bucket storage class

    bucket

    setBucketStorageclass

    Management

    Configuring the bucket tag

    bucket

    setBucketTagging

    Management

    Configuring the versioning function for buckets

    bucket

    setBucketVersioning

    Management

    Configuring the static domain name for buckets

    bucket

    setBucketWebsite
    Table 2 OBS related data operations that can be recorded by CTS

    Tracker Type

    Operation

    Resource

    Trace Name

    Data_Read

    Downloading an object

    object

    GET.OBJECT

    Data_Read

    Querying the object ACL

    object

    GET.OBJECT.ACL

    Data_Read

    Querying the bucket website configuration

    object

    GET.OBJECT.WEBSITE

    Data_Read

    Accessing an object through the website

    object

    HEAD.OBJECT.WEBSITE

    Data_Read

    Querying the object metadata

    object

    HEAD.OBJECT

    Data_Read

    Listing part data

    object

    LIST.OBJECT.UPLOAD

    Data_Write

    Deleting an object

    object

    DELETE.OBJECT

    Data_Write

    Canceling a part

    object

    DELETE.UPLOAD

    Data_Write

    Queries the cross-domain requests for objects

    object

    OPTIONS.OBJECT

    Data_Write

    Uploading an object

    object

    POST.OBJECT

    Data_Write

    Deleting objects in batches

    object

    POST.OBJECT.MULTIDELETE

    Data_Write

    Restoring cold objects

    object

    POST.OBJECT.RESTORE

    Data_Write

    Merging parts

    object

    POST.UPLOAD.COMPLETE

    Data_Write

    Initializing multipart tasks

    object

    POST.UPLOAD.INIT

    Data_Write

    Uploading an object

    object

    PUT.OBJECT

    Data_Write

    Configuring the object ACL

    object

    PUT.OBJECT.ACL

    Data_Write

    Copying an object

    object

    PUT.OBJECT.COPY

    Data_Write

    Configuring the object storage class

    object

    PUT.OBJECT.STORAGECLASS

    Data_Write

    Uploading a part

    object

    PUT.PART

    Data_Write

    Copying a part

    object

    PUT.PART.COPY

Follow-up Procedure

You can click Disable under the Operation column on the right of a tracker to disable the tracker. After the tracker is disabled, the system will stop recording operations, but you can still view existing operation records.

You can click Delete under the Operation column on the right of a tracker to delete the tracker. Deleting a tracker has no impact on existing operation records. When you enable CTS again, you can view operation records that have been generated.