Manage log storage

You can store Cloud Trail event records in Object Storage. The log storage feature is scheduled based on the hour, and log storage begins from the next hourly mark after activation. It may take some time after the hour for logs to be stored. The following describes how to manage logs in the Cloud Trail service.

info

The log storage management feature is available to users with the project role of Project member or Project admin and the organization role of Trail viewer or Organization admin.

Enable log storage

You can use log storage management to store Cloud Trail event records.

1. Go to KakaoCloud Console > Management > Cloud Trail.

2. Select the Event menu.

3. Click the [Log storage management] button in the upper right corner of the event list.

4. In the Log storage management pop-up, configure the required settings.

   Item	Description
   Log storage option	Specify whether to enable log storage management
   Event storage scope	Set the scope of events to store - If organization event inclusion is not selected, only project events will be stored
   Storage bucket	Object Storage bucket where events will be stored - Charges may apply depending on the size of stored logs - Logs are stored in the trail folder of the specified bucket under domain_event and project_event folders
   Log storage interval	Interval for storing logs - Can choose between 1 hour and 10 minutes
   File extension	Extension of the compressed trail log file stored in the bucket - Can choose from gz, gzip, or zip
   Access key	IAM access key ID and secret access key for storing events - Refer to Credentials > Issue IAM access key to issue an access key ID and secret key

5. Next to the [Log storage management] button, you can check the current log storage status.

Log storage error

If an error occurs during log storage due to bucket deletion, permission changes, or access key changes/deletion, the log storage status changes to Log storage error. In such cases, you must reconfigure Log storage management.

Error code	Description
TRAIL_400-001	Access to bucket failed due to changed or deleted user access key
TRAIL_400-002	No permission to access the bucket
TRAIL_400-003	Bucket deleted, unable to store logs
TRAIL_999-001	Unknown error, unable to store logs - When this error occurs, log storage is automatically retried at the next scheduled time, so no changes to the configuration are required

info

Logs that could not be stored due to an error will be uploaded to the bucket at the next scheduled time once the issue is resolved.

Disable log storage

You can stop previously configured log storage. When disabled, all bucket and access key information related to log storage is reset.

1. Go to KakaoCloud Console > Management > Cloud Trail.
2. Select the Event menu.
3. Click the [Log storage management] button in the upper right corner of the event list. In the pop-up, change the log storage option to Disabled, then click the [Save] button.
4. In the log storage disable pop-up, click the [Stop] button.