本文档介绍了 Chrome Enterprise Premium 的审核日志记录。 Google Cloud 服务会生成审核日志,以记录 Google Cloud 资源中的管理和访问活动。如需详细了解 Cloud Audit Logs,请参阅以下内容:
服务名称
Chrome Enterprise Premium 审核日志使用服务名称 beyondcorp.googleapis.com。针对此服务的过滤条件:
protoPayload.serviceName="beyondcorp.googleapis.com"
方法(按权限类型)
每个 IAM 权限都有一个 type 属性,该属性的值是一个枚举,可以是以下四个值之一:ADMIN_READ、ADMIN_WRITE、DATA_READ 或 DATA_WRITE。在您调用某个方法时,Chrome Enterprise Premium 会生成一个审核日志,其类别取决于执行该方法所需权限的 type 属性。需要 IAM 权限且 type 属性值为 DATA_READ、DATA_WRITE 或 ADMIN_READ 的方法会生成数据访问审核日志。需要 IAM 权限且 type 属性值为 ADMIN_WRITE 的方法会生成管理员活动审核日志。
| 权限类型 | 方法 |
|---|---|
ADMIN_READ |
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.GetAppConnectiongoogle.cloud.beyondcorp.appconnections.v1.AppConnectionsService.ListAppConnectionsgoogle.cloud.beyondcorp.appconnections.v1.AppConnectionsService.ResolveAppConnectionsgoogle.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.GetAppConnectiongoogle.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.ListAppConnectionsgoogle.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.ResolveAppConnectionsgoogle.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.GetAppConnectorgoogle.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ListAppConnectorsgoogle.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ResolveInstanceConfiggoogle.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.GetAppConnectorgoogle.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ListAppConnectorsgoogle.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ResolveInstanceConfiggoogle.cloud.beyondcorp.appgateways.v1.AppGatewaysService.GetAppGatewaygoogle.cloud.beyondcorp.appgateways.v1.AppGatewaysService.ListAppGatewaysgoogle.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.GetAppGatewaygoogle.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.ListAppGatewaysgoogle.cloud.beyondcorp.connections.v1alpha.ConnectionsService.GetConnectiongoogle.cloud.beyondcorp.connections.v1alpha.ConnectionsService.ListConnectionsgoogle.cloud.beyondcorp.connections.v1alpha.ConnectionsService.ResolveConnectionsgoogle.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.GetConnectorgoogle.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ListConnectorsgoogle.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ResolveInstanceConfiggoogle.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.GetApplicationgoogle.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.GetSecurityGatewaygoogle.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.ListApplicationsgoogle.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.ListSecurityGatewaysgoogle.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.GetApplicationgoogle.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.GetSecurityGatewaygoogle.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.ListApplicationsgoogle.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.ListSecurityGatewaysGetIamPolicygoogle.longrunning.Operations.GetOperationgoogle.longrunning.Operations.ListOperations |
ADMIN_WRITE |
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.CreateAppConnection (LRO)google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.DeleteAppConnection (LRO)google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.UpdateAppConnection (LRO)google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.CreateAppConnection (LRO)google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.DeleteAppConnection (LRO)google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.UpdateAppConnection (LRO)google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.CreateAppConnector (LRO)google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.DeleteAppConnector (LRO)google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ReportStatus (LRO)google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.UpdateAppConnector (LRO)google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.CreateAppConnector (LRO)google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.DeleteAppConnector (LRO)google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ReportStatus (LRO)google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.UpdateAppConnector (LRO)google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.CreateAppGateway (LRO)google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.DeleteAppGateway (LRO)google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.CreateAppGateway (LRO)google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.DeleteAppGateway (LRO)google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.CreateConnection (LRO)google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.DeleteConnection (LRO)google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.UpdateConnection (LRO)google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.CreateConnector (LRO)google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.DeleteConnector (LRO)google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ReportStatus (LRO)google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.UpdateConnector (LRO)google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.CreateApplication (LRO)google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.CreateSecurityGateway (LRO)google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.DeleteApplication (LRO)google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.DeleteSecurityGateway (LRO)google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.UpdateApplication (LRO)google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.UpdateSecurityGateway (LRO)google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.CreateApplication (LRO)google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.CreateSecurityGateway (LRO)google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.DeleteApplication (LRO)google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.DeleteSecurityGateway (LRO)google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.UpdateApplication (LRO)google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.UpdateSecurityGateway (LRO)SetIamPolicygoogle.longrunning.Operations.CancelOperationgoogle.longrunning.Operations.DeleteOperation |
API 接口审核日志
如需了解如何评估每种方法的权限以及评估哪些权限,请参阅 Chrome Enterprise Premium 的 Identity and Access Management 文档。
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService
以下审核日志与属于 google.cloud.beyondcorp.appconnections.v1.AppConnectionsService 的方法相关联。
CreateAppConnection
- 方法:
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.CreateAppConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnections.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.CreateAppConnection"
DeleteAppConnection
- 方法:
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.DeleteAppConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnections.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.DeleteAppConnection"
GetAppConnection
- 方法:
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.GetAppConnection - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnections.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.GetAppConnection"
ListAppConnections
- 方法:
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.ListAppConnections - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnections.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.ListAppConnections"
ResolveAppConnections
- 方法:
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.ResolveAppConnections - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnections.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.ResolveAppConnections"
UpdateAppConnection
- 方法:
google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.UpdateAppConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnections.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1.AppConnectionsService.UpdateAppConnection"
google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService
以下审核日志与属于 google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService 的方法相关联。
CreateAppConnection
- 方法:
google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.CreateAppConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnections.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.CreateAppConnection"
DeleteAppConnection
- 方法:
google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.DeleteAppConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnections.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.DeleteAppConnection"
GetAppConnection
- 方法:
google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.GetAppConnection - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnections.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.GetAppConnection"
ListAppConnections
- 方法:
google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.ListAppConnections - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnections.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.ListAppConnections"
ResolveAppConnections
- 方法:
google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.ResolveAppConnections - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnections.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.ResolveAppConnections"
UpdateAppConnection
- 方法:
google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.UpdateAppConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnections.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnections.v1alpha.AppConnectionsService.UpdateAppConnection"
google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService
以下审核日志与属于 google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService 的方法相关联。
CreateAppConnector
- 方法:
google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.CreateAppConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnectors.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.CreateAppConnector"
DeleteAppConnector
- 方法:
google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.DeleteAppConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnectors.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.DeleteAppConnector"
GetAppConnector
- 方法:
google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.GetAppConnector - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnectors.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.GetAppConnector"
ListAppConnectors
- 方法:
google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ListAppConnectors - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnectors.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ListAppConnectors"
ReportStatus
- 方法:
google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ReportStatus - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnectors.reportStatus - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ReportStatus"
ResolveInstanceConfig
- 方法:
google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ResolveInstanceConfig - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnectors.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.ResolveInstanceConfig"
UpdateAppConnector
- 方法:
google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.UpdateAppConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnectors.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1.AppConnectorsService.UpdateAppConnector"
google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService
以下审核日志与属于 google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService 的方法相关联。
CreateAppConnector
- 方法:
google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.CreateAppConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnectors.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.CreateAppConnector"
DeleteAppConnector
- 方法:
google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.DeleteAppConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnectors.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.DeleteAppConnector"
GetAppConnector
- 方法:
google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.GetAppConnector - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnectors.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.GetAppConnector"
ListAppConnectors
- 方法:
google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ListAppConnectors - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnectors.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ListAppConnectors"
ReportStatus
- 方法:
google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ReportStatus - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnectors.reportStatus - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ReportStatus"
ResolveInstanceConfig
- 方法:
google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ResolveInstanceConfig - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnectors.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.ResolveInstanceConfig"
UpdateAppConnector
- 方法:
google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.UpdateAppConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnectors.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appconnectors.v1alpha.AppConnectorsService.UpdateAppConnector"
google.cloud.beyondcorp.appgateways.v1.AppGatewaysService
以下审核日志与属于 google.cloud.beyondcorp.appgateways.v1.AppGatewaysService 的方法相关联。
CreateAppGateway
- 方法:
google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.CreateAppGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.appGateways.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.CreateAppGateway"
DeleteAppGateway
- 方法:
google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.DeleteAppGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.appGateways.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.DeleteAppGateway"
GetAppGateway
- 方法:
google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.GetAppGateway - 审核日志类型:数据访问
- 权限:
beyondcorp.appGateways.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.GetAppGateway"
ListAppGateways
- 方法:
google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.ListAppGateways - 审核日志类型:数据访问
- 权限:
beyondcorp.appGateways.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appgateways.v1.AppGatewaysService.ListAppGateways"
google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService
以下审核日志与属于 google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService 的方法相关联。
CreateAppGateway
- 方法:
google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.CreateAppGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.appGateways.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.CreateAppGateway"
DeleteAppGateway
- 方法:
google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.DeleteAppGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.appGateways.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.DeleteAppGateway"
GetAppGateway
- 方法:
google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.GetAppGateway - 审核日志类型:数据访问
- 权限:
beyondcorp.appGateways.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.GetAppGateway"
ListAppGateways
- 方法:
google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.ListAppGateways - 审核日志类型:数据访问
- 权限:
beyondcorp.appGateways.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.appgateways.v1alpha.AppGatewaysService.ListAppGateways"
google.cloud.beyondcorp.connections.v1alpha.ConnectionsService
以下审核日志与属于 google.cloud.beyondcorp.connections.v1alpha.ConnectionsService 的方法相关联。
CreateConnection
- 方法:
google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.CreateConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.connections.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.CreateConnection"
DeleteConnection
- 方法:
google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.DeleteConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.connections.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.DeleteConnection"
GetConnection
- 方法:
google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.GetConnection - 审核日志类型:数据访问
- 权限:
beyondcorp.connections.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.GetConnection"
ListConnections
- 方法:
google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.ListConnections - 审核日志类型:数据访问
- 权限:
beyondcorp.connections.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.ListConnections"
ResolveConnections
- 方法:
google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.ResolveConnections - 审核日志类型:数据访问
- 权限:
beyondcorp.connections.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.ResolveConnections"
UpdateConnection
- 方法:
google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.UpdateConnection - 审核日志类型:管理员活动
- 权限:
beyondcorp.connections.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connections.v1alpha.ConnectionsService.UpdateConnection"
google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService
以下审核日志与属于 google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService 的方法相关联。
CreateConnector
- 方法:
google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.CreateConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.connectors.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.CreateConnector"
DeleteConnector
- 方法:
google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.DeleteConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.connectors.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.DeleteConnector"
GetConnector
- 方法:
google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.GetConnector - 审核日志类型:数据访问
- 权限:
beyondcorp.connectors.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.GetConnector"
ListConnectors
- 方法:
google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ListConnectors - 审核日志类型:数据访问
- 权限:
beyondcorp.connectors.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ListConnectors"
ReportStatus
- 方法:
google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ReportStatus - 审核日志类型:管理员活动
- 权限:
beyondcorp.connectors.reportStatus - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ReportStatus"
ResolveInstanceConfig
- 方法:
google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ResolveInstanceConfig - 审核日志类型:数据访问
- 权限:
beyondcorp.connectors.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.ResolveInstanceConfig"
UpdateConnector
- 方法:
google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.UpdateConnector - 审核日志类型:管理员活动
- 权限:
beyondcorp.connectors.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.connectors.v1alpha.ConnectorsService.UpdateConnector"
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService
以下审核日志与属于 google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService 的方法相关联。
CreateApplication
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.CreateApplication - 审核日志类型:管理员活动
- 权限:
beyondcorp.sgApplications.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.CreateApplication"
CreateSecurityGateway
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.CreateSecurityGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.securityGateways.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.CreateSecurityGateway"
DeleteApplication
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.DeleteApplication - 审核日志类型:管理员活动
- 权限:
beyondcorp.sgApplications.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.DeleteApplication"
DeleteSecurityGateway
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.DeleteSecurityGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.securityGateways.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.DeleteSecurityGateway"
GetApplication
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.GetApplication - 审核日志类型:数据访问
- 权限:
beyondcorp.sgApplications.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.GetApplication"
GetSecurityGateway
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.GetSecurityGateway - 审核日志类型:数据访问
- 权限:
beyondcorp.securityGateways.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.GetSecurityGateway"
ListApplications
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.ListApplications - 审核日志类型:数据访问
- 权限:
beyondcorp.sgApplications.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.ListApplications"
ListSecurityGateways
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.ListSecurityGateways - 审核日志类型:数据访问
- 权限:
beyondcorp.securityGateways.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.ListSecurityGateways"
UpdateApplication
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.UpdateApplication - 审核日志类型:管理员活动
- 权限:
beyondcorp.sgApplications.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.UpdateApplication"
UpdateSecurityGateway
- 方法:
google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.UpdateSecurityGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.securityGateways.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1.SecurityGatewaysService.UpdateSecurityGateway"
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService
以下审核日志与属于 google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService 的方法相关联。
CreateApplication
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.CreateApplication - 审核日志类型:管理员活动
- 权限:
beyondcorp.sgApplications.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.CreateApplication"
CreateSecurityGateway
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.CreateSecurityGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.securityGateways.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.CreateSecurityGateway"
DeleteApplication
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.DeleteApplication - 审核日志类型:管理员活动
- 权限:
beyondcorp.sgApplications.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.DeleteApplication"
DeleteSecurityGateway
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.DeleteSecurityGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.securityGateways.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.DeleteSecurityGateway"
GetApplication
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.GetApplication - 审核日志类型:数据访问
- 权限:
beyondcorp.sgApplications.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.GetApplication"
GetSecurityGateway
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.GetSecurityGateway - 审核日志类型:数据访问
- 权限:
beyondcorp.securityGateways.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.GetSecurityGateway"
ListApplications
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.ListApplications - 审核日志类型:数据访问
- 权限:
beyondcorp.sgApplications.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.ListApplications"
ListSecurityGateways
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.ListSecurityGateways - 审核日志类型:数据访问
- 权限:
beyondcorp.securityGateways.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.ListSecurityGateways"
UpdateApplication
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.UpdateApplication - 审核日志类型:管理员活动
- 权限:
beyondcorp.sgApplications.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.UpdateApplication"
UpdateSecurityGateway
- 方法:
google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.UpdateSecurityGateway - 审核日志类型:管理员活动
- 权限:
beyondcorp.securityGateways.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.beyondcorp.securitygateways.v1alpha.SecurityGatewaysService.UpdateSecurityGateway"
google.iam.v1.IAMPolicy
以下审核日志与属于 google.iam.v1.IAMPolicy 的方法相关联。
GetIamPolicy
- 方法:
GetIamPolicy - 审核日志类型:数据访问
- 权限:
beyondcorp.appConnections.getIamPolicy - ADMIN_READbeyondcorp.appConnectors.getIamPolicy - ADMIN_READbeyondcorp.appGateways.getIamPolicy - ADMIN_READbeyondcorp.connections.getIamPolicy - ADMIN_READbeyondcorp.connectors.getIamPolicy - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="GetIamPolicy"
SetIamPolicy
- 方法:
SetIamPolicy - 审核日志类型:管理员活动
- 权限:
beyondcorp.appConnections.setIamPolicy - ADMIN_WRITEbeyondcorp.appConnectors.setIamPolicy - ADMIN_WRITEbeyondcorp.appGateways.setIamPolicy - ADMIN_WRITEbeyondcorp.connections.setIamPolicy - ADMIN_WRITEbeyondcorp.connectors.setIamPolicy - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="SetIamPolicy"
google.longrunning.Operations
以下审核日志与属于 google.longrunning.Operations 的方法相关联。
CancelOperation
- 方法:
google.longrunning.Operations.CancelOperation - 审核日志类型:管理员活动
- 权限:
beyondcorp.operations.cancel - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.longrunning.Operations.CancelOperation"
DeleteOperation
- 方法:
google.longrunning.Operations.DeleteOperation - 审核日志类型:管理员活动
- 权限:
beyondcorp.operations.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.longrunning.Operations.DeleteOperation"
GetOperation
- 方法:
google.longrunning.Operations.GetOperation - 审核日志类型:数据访问
- 权限:
beyondcorp.operations.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.longrunning.Operations.GetOperation"
ListOperations
- 方法:
google.longrunning.Operations.ListOperations - 审核日志类型:数据访问
- 权限:
beyondcorp.operations.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.longrunning.Operations.ListOperations"