Log Transfer to LTS Is Enabled
Rule Details
|
Parameter |
Description |
|---|---|
|
Rule Name |
cts-lts-enable |
|
Identifier |
Log Transfer to LTS Is Enabled |
|
Description |
If a CTS tracker does not have Transfer to LTS enabled, this tracker is non-compliant. |
|
Tag |
cts |
|
Trigger Type |
Configuration change |
|
Filter Type |
cts.trackers |
|
Rule Parameters |
None |
Application Scenarios
CTS records tenant operations on cloud resources, such as creating, modifying, and deleting cloud resources, and stores operations as traces on CTS console for seven days. To store traces for more than seven days, configure trace transfer to LTS.
Solution
After CTS is enabled, the system creates a management tracker named system, and records all operations performed by the current user in this tracker. Configure the tracker to transfer CTS trace to LTS, and then the system creates a log group and log stream in LTS. For details, see Transferring CTS Traces to LTS and Viewing Them.
Rule Logic
- If a CTS tracker (disabled or enabled) has Transfer to LTS enabled, this tracker is compliant.
- If a CTS tracker (disabled or enabled) does not have Transfer to LTS enabled, this tracker is non-compliant.
Constraints
If an organization CTS tracker is involved, and this rule is triggered with a member account from this organization, there may be a lag of up to 24 hours in updating the evaluating results due to the delay in collecting tracker resources deployed by the organization administrator.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
