Auditing events for a project
As a security officer, auditor, or manager, you can use the IBM Cloud® Activity Tracker service to track how users and applications interact with the IBM Cloud Projects service.
IBM Cloud Activity Tracker records user-initiated activities that change the state of a service in IBM Cloud. You can use this service to investigate abnormal activity, critical actions, and ensure that you comply with regulatory audit requirements. In addition, you can be alerted about actions as they happen. The events that are collected comply with the Cloud Auditing Data Federation (CADF) standard. For more information, see the getting started tutorial for IBM Cloud Activity Tracker.
List of management events
| Action | Description |
|---|---|
project.project.create |
Create a project. |
project.project.read |
Read a project. |
project.project.list |
List all projects under the account. |
project.project.update |
Update a project. |
project.project.delete |
Delete a project. |
project.config.create |
Create a project config. |
project.config.read |
Read a project config. |
project.config.update |
Update a project config. |
project.config.validate |
Validate a project config. |
project.config.list |
List all project configs under the account. |
project.config.update |
Update a project config. |
project.config.approve |
Approve a project config draft. |
project.config.force-approve |
Force approve a project config draft. |
project.config.delete |
Delete a project config. |
project.config.deploy |
Deploy a project config. |
project.config.undeploy |
Undeploy (destroy) a project config. |
project.environment.create |
Create a project environment. |
project.environment.read |
Read a project environment. |
project.environment.list |
List all project environments under the account. |
project.environment.update |
Update a project environment. |
project.environment.delete |
Delete a project environment. |
For a complete list of custom request and response parameters for each event, see the Project API. The update actions don't provide information about the delta, only the new value is provided.
Viewing events
Events that are generated by an instance of the IBM Cloud Projects service are automatically forwarded to the IBM Cloud Activity Tracker service instance that is available in the same location.
IBM Cloud Activity Tracker can have only one instance per location. To view events, you must access the web UI of the IBM Cloud Activity Tracker service in the same location where your service instance is available. For more information, see Launching the UI.