Updated on 2023-06-08 GMT+08:00

Auditing

Cloud Trace Service (CTS) records operations on cloud resources in your account. You can use the logs to perform security analysis, track resource changes, audit compliance, and locate faults.

Enabling CTS

A tracker will be automatically created after CTS is enabled. All traces recorded by CTS are associated with a tracker. Currently, only one tracker can be created for each account.

For details about how to enable the cloud audit service, see Enabling CTS.

CDN Operations Recorded by CTS

Table 1 CDN operations that can be recorded by CTS

Operation

Description

createDomain

Creating a domain name

updateDomain

Updating a domain name

Configuring range requests

Configuring redirect from origin

Configuring an IP ACL

Configuring the host header

Configuring the origin server

Configuring OBS private bucket access

Configuring an HTTPS certificate

Configuring cache rules

Configuring HTTP headers

Configuring domain names in a batch

Configuring HTTPS for domain names in a batch

Creating a resource tag

Deleting a resource tag

deleteDomain

Removing a domain name

enableDomain

Enabling domain names

disableDomain

Disabling domain names

updateOrigin

Configuring an origin server

updateOriginHost

Configuring a host header

createRefer

Creating a referer rule

createCertificate

Configuring a domain certificate

createCacheRule

Creating a cache rule

createRefreshTask

Creating a cache purge task

createPreheatingTask

Creating a cache prefetch task

Viewing CTS Traces

After you enable CTS, the system starts to record CDN operations. You can view operations of the past seven days on the CTS console. For details, see Querying Real-Time Traces.

Disabling CTS

You can disable trackers on the CTS console. After a tracker is disabled, the system will stop recording operations, but you can still view historical records. For details about how to disable a tracker, see Disabling or Enabling a Tracker.