Auditing

Cloud Trace Service (CTS) records operations on cloud resources in your account. You can use the logs to perform security analysis, track resource changes, audit compliance, and locate faults.

Enabling CTS

A tracker will be automatically created after CTS is enabled. All traces recorded by CTS are associated with a tracker. Currently, only one tracker can be created for each account.

For details about how to enable the cloud audit service, see Enabling CTS.

CDN Operations Recorded by CTS

**Table 1** CDN operations that can be recorded by CTS
Operation	Description
createDomain	Creating a domain name
updateDomain	Updating a domain name Configuring range requests Configuring redirect from origin Configuring an IP ACL Configuring the host header Configuring the origin server Configuring OBS private bucket access Configuring an HTTPS certificate Configuring cache rules Configuring HTTP headers Configuring domain names in a batch Configuring HTTPS for domain names in a batch Creating a resource tag Deleting a resource tag
deleteDomain	Removing a domain name
enableDomain	Enabling domain names
disableDomain	Disabling domain names
updateOrigin	Configuring an origin server
updateOriginHost	Configuring a host header
createRefer	Creating a referer rule
createCertificate	Configuring a domain certificate
createCacheRule	Creating a cache rule
createRefreshTask	Creating a cache purge task
createPreheatingTask	Creating a cache prefetch task

Viewing CTS Traces

After you enable CTS, the system starts to record CDN operations. You can view operations of the past seven days on the CTS console. For details, see Querying Real-Time Traces.

Disabling CTS

You can disable trackers on the CTS console. After a tracker is disabled, the system will stop recording operations, but you can still view historical records. For details about how to disable a tracker, see Disabling or Enabling a Tracker.

Previous topic: Enterprise Projects

Next topic: Monitoring