Monitoring File Access Logs with Cloud Logging and Cloud Storage

 ๐Ÿ” Monitoring File Access Logs with Cloud Logging and Cloud Storage

Overview

Google Cloud provides tools to help monitor and audit file access activity, especially when using Cloud Storage. By enabling Cloud Audit Logs and Cloud Logging, you can track who accessed which files, when, and how.


✅ Prerequisites

A Google Cloud project


Cloud Storage bucket(s)


Appropriate IAM roles (e.g., Logging Viewer, Storage Admin, Cloud Audit Logs Viewer)


๐Ÿ”ง Step-by-Step Setup

1. Enable Cloud Audit Logs

Google Cloud automatically generates Audit Logs for Cloud Storage. There are two main types:


Admin Activity logs (enabled by default): Records actions that modify configurations.


Data Access logs (must be explicitly enabled): Records file read/write operations.


To enable Data Access logs:


Go to the IAM & Admin > Audit Logs page in the Cloud Console.


Select your project.


Locate Cloud Storage and check Read and/or Write under Data Access for the desired identities (users, groups, service accounts).


Save changes.


2. Access Logs in Cloud Logging

After enabling logs:


Navigate to Logging > Logs Explorer in the Google Cloud Console.


Use filters to find relevant logs.


Example query:


sql

Copy

Edit

resource.type="gcs_bucket"

logName="projects/[PROJECT_ID]/logs/cloudaudit.googleapis.com%2Fdata_access"

protoPayload.resourceName="projects/_/buckets/[BUCKET_NAME]/objects/[OBJECT_NAME]"

This shows access to a specific object in a bucket.


๐Ÿ”Ž Interpreting Logs

Important fields in a log entry:


timestamp: When the access occurred


protoPayload.authenticationInfo.principalEmail: Who accessed the file


protoPayload.methodName: The type of access (e.g., storage.objects.get, storage.objects.create)


resource.labels.bucket_name: Which bucket was accessed


resource.labels.object_name: Specific file


๐Ÿ“ค Exporting Logs (Optional)

You can export logs to:


BigQuery: For advanced querying


Cloud Storage: For archival


Pub/Sub: For real-time alerts and integrations


Steps:


Go to Logging > Log Router


Click Create Sink


Define filters (e.g., all Cloud Storage access logs)


Choose a destination (BigQuery, GCS, Pub/Sub)


๐Ÿ”” Optional: Set Up Alerts

Go to Logging > Logs-based Metrics


Create a metric for events of interest (e.g., all storage.objects.get)


Use Cloud Monitoring > Alerting to create an alert based on the metric


๐Ÿ“˜ Example Use Case

Monitor all download activity from a public-facing bucket:


Enable Data Access logs


Use a Logs Explorer filter for storage.objects.get


Export logs to BigQuery for regular audits


Set up alerts for high-volume downloads or unexpected user access


๐Ÿ›ก️ Best Practices

Regularly review and rotate IAM policies


Limit who can access logs and enable logging for sensitive buckets


Use log retention policies to control cost

Learn Google Cloud Data Engineering Course

Read More

Using Signed URLs and Tokens for Secure Data Downloads

Building a Unified Data Lake and Warehouse with BigQuery and Cloud Storage

Encrypting Data on Ingress and Egress from Cloud Storage

Implementing Multi-Tiered Storage Strategies in Cloud Storage

Visit Our Quality Thought Training in Hyderabad

Get Directions 

Comments

Post a Comment

Popular posts from this blog

Understanding Snowflake Editions: Standard, Enterprise, Business Critical

Understanding Snowflake Editions: Standard, Enterprise, Business Critical Snowflake offers several service editions to meet different business needs. These editions provide increasing levels of features, security, and compliance, depending on your organization's size, industry, and regulatory requirements. 1. Standard Edition Best for: Small to mid-sized teams or businesses that need core data warehousing features without advanced compliance needs. Key Features: Fully managed, cloud-native data platform Support for structured and semi-structured data Virtual warehouses for compute scaling Time Travel (1 day) – lets you query past versions of data Secure data sharing between Snowflake accounts Basic security with role-based access control Use Case Example: Startups or small companies analyzing business data without strict data compliance needs. 2. Enterprise Edition Best for: Organizations that need more control, scalability, and longer data retention. Includes everything in Standar...
Read more

Installing Tosca: Step-by-Step Guide for Beginners

๐Ÿงช Installing Tosca: Step-by-Step Guide for Beginners Tosca by Tricentis is a popular test automation tool used for end-to-end functional testing across various technologies like web, desktop, APIs, and more. Whether you're new to Tosca or setting it up for a QA team, this beginner-friendly guide walks you through the installation process step by step. ✅ System Requirements Before installation, make sure your system meets the minimum requirements: ๐Ÿ–ฅ️ Hardware: CPU: Dual-core or higher RAM: Minimum 8 GB (16 GB recommended) Disk: 5+ GB of free space ๐Ÿ’ป Software: OS: Windows 10 or 11 (64-bit) .NET Framework: 4.8 or later Microsoft SQL Server (for shared workspace, optional) Admin rights to install software ๐Ÿ”ฝ Step 1: Download Tosca Go to the official Tricentis Support Portal Create an account or log in. Navigate to Downloads > Tosca Testsuite Choose the latest stable version. Download the Tosca Installer (.exe) file. ๐Ÿ” You may need a valid Tricentis license or evaluation request ...
Read more

Why Data Science Course?

Why Data Science Course? A Data Science course is valuable for several reasons: 1.Growing Job Market The demand for data scientists is increasing globally, with companies actively hiring professionals with data skills. Many industries, including healthcare, banking, and technology, rely on data science for better decision-making. 2. Diverse Career Options You can work as a Data Scientist, Data Analyst, Machine Learning Engineer, AI Specialist, Business Analyst, or Big Data Engineer. Data science skills are useful in various industries like finance, retail, healthcare, education, and sports analytics. 3. Develops Critical Thinking & Problem-Solving Skills A data science course helps you analyze complex problems, interpret data, and develop innovative solutions. Encourages logical reasoning, pattern recognition, and data-driven decision-making. 4. Learn Advanced Technologies & Tools Gain hands-on experience with tools like Python, R, SQL, TensorFlow, Tableau, Hadoop, and Power BI...
Read more