Auditing
Auditing lets you view, manage, and audit cloud activity. Use Oracle Cloud Infrastructure (OCI) Audit to help achieve compliance with corporate policies and industry regulations.
As you adopt cloud services, it can be challenging to align business objectives with the objectives of an IT audit. Auditing can help you monitor security breaches and unauthorized access, meet regulatory requirements, and identify when and how your services are being used. Auditing is a highly capable toolset to achieve and demonstrate compliance to auditors.
What is Auditing?
Auditing lets you view events logged by the Audit service. You can view events by using the Console, API, or SDKs. You can use data from events to perform diagnostics, track resource usage, monitor compliance, and collect security-related events.
Log information includes:
- Time the API activity occurred
- Source of the activity
- Target of the activity
- Type of action
- Type of response
- State changes of resources
- Better tracking of long-running APIs
- Troubleshooting log information
You can view audit logs in the Console. Audit logs are retained for 365 days. For a longer retention, you can export audit logs to an OCI Object Storage bucket. You can also ingest audit logs into Oracle Management Cloud or into third-party systems such as Splunk. Audit logging can be aligned with your enterprise logging strategy.
Explore More
Reference Architectures:
Documentation:
Blogs:
- How to Ingest Oracle Cloud Infrastructure Audit Logs into Oracle Management Cloud
- Oracle Cloud Infrastructure Tenancies - Retrieving Audit logs
- Observability on OCI - Using custom logs in OCI Logging to monitor and analyze cloud-native applications
- Announcing the Oracle Cloud Infrastructure Logging plugin for Splunk