Resource: AuditReport
An audit report.
| JSON representation |
|---|
{ "name": string, "reportSummary": { object ( |
| Fields | |
|---|---|
name |
Identifier. The name of this Audit Report, in the format of scope given in request. |
reportSummary |
Output only. Report summary with compliance, violation counts etc. |
operationId |
Output only. ClientOperationId |
destinationDetails |
Output only. The location where the generated report will be uploaded. |
complianceStandard |
Output only. Compliance Standard. |
scope |
Output only. The parent scope on which the report was generated. |
createTime |
Output only. Creation time of the audit report. Uses RFC 3339, where generated output will always be Z-normalized and use 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
controlDetails[] |
Output only. The overall status of controls |
reportGenerationState |
Output only. The state of Audit Report Generation. |
complianceFramework |
Output only. Compliance Framework of Audit Report |
scopeId |
Output only. The ID/ Number for the scope on which the audit report was generated. |
ReportSummary
The additional information for an audit operation.
| JSON representation |
|---|
{ "totalCount": integer, "compliantCount": integer, "violationCount": integer, "manualReviewNeededCount": integer, "errorCount": integer } |
| Fields | |
|---|---|
totalCount |
Total number of checks. |
compliantCount |
Number of compliant checks. |
violationCount |
Number of checks with violations. |
manualReviewNeededCount |
Number of checks with "manual review needed" status. |
errorCount |
Number of checks that could not be performed due to errors. |
ControlDetails
The evaluation details for a control.
| JSON representation |
|---|
{ "control": { object ( |
| Fields | |
|---|---|
control |
The control for which the findings are being reported. |
complianceState |
Output only. Overall status of the findings for the control. |
controlReportSummary |
Report summary with compliance, violation counts etc. |
Control
A control.
| JSON representation |
|---|
{ "id": string, "displayName": string, "family": enum ( |
| Fields | |
|---|---|
id |
Output only. The control identifier used to fetch the findings. This is same as the control report name. |
displayName |
Output only. Display name of the control. |
family |
Output only. Group where the control belongs. E.g. Access Control. |
controlFamily |
Output only. Regulatory Family of the control E.g. Access Control |
description |
Output only. Regulatory control ask of the control |
responsibilityType |
Output only. The type of responsibility for implementing this control. It can be google, customer or shared. |
googleResponsibilityDescription |
Output only. Description of the google responsibility for implementing this control. |
googleResponsibilityImplementation |
Output only. Implementation of the google responsibility for implementing this control. |
customerResponsibilityDescription |
Output only. Description of the customer responsibility for implementing this control. |
customerResponsibilityImplementation |
Output only. Implementation of the customer responsibility for implementing this control. |
Family
The family of the control. For example, Access Control.
| Enums | |
|---|---|
FAMILY_UNSPECIFIED |
Unspecified. Invalid state. |
AC |
Access Control |
AT |
Awareness and Training |
AU |
Audit and Accountability |
CA |
Certification, Accreditation and Security Assessments |
CM |
Configuration Management |
CP |
Contingency Planning |
IA |
Identification and Authentication |
IR |
Incident Response |
MA |
Maintenance |
MP |
Media Protection |
PE |
Physical and Environmental Protection |
PL |
Security Planning |
PS |
Personnel Security |
RA |
Risk Assessment |
SA |
System Services and Acquisition |
SC |
System and Communications Protection |
SI |
System and Information Integrity |
SR |
Supply Chain Risk Management |
ControlFamily
The regulatory family of the control.
| JSON representation |
|---|
{ "familyId": string, "displayName": string } |
| Fields | |
|---|---|
familyId |
The ID of the regulatory control family. |
displayName |
The display name of the regulatory control family. |
ComplianceState
The compliance state after evaluation.
| Enums | |
|---|---|
COMPLIANCE_STATE_UNSPECIFIED |
Unspecified. Invalid state. |
COMPLIANT |
Compliant. |
VIOLATION |
Violation. |
MANUAL_REVIEW_NEEDED |
MANUAL_REVIEW_NEEDED, requires manual review |
ERROR |
Error while computing status. |
AUDIT_NOT_SUPPORTED |
Cannot be audited |
ReportGenerationState
The different states of the Audit Manager report generation.
| Enums | |
|---|---|
REPORT_GENERATION_STATE_UNSPECIFIED |
Unspecified. Invalid state. |
IN_PROGRESS |
Audit report generation process is in progress, ie. operation state is neither OPERATION_STATE_DONE nor OPERATION_STATE_FAILED. |
COMPLETED |
Audit report generation process is completed. Operation state is OPERATION_STATE_DONE. |
FAILED |
Audit report generation process has failed. Operation state is OPERATION_STATE_FAILED. |
SUMMARY_UNKNOWN |
Audit report generation process has completed. But report summary is unknown. This is valid for older reports. |
Methods |
|
|---|---|
|
Register the Audit Report generation requests and returns the OperationId using which the customer can track the report generation progress. |
|
Get the overall audit report |
|
Lists audit reports in the selected parent scope |