You need to retain Admin Activity audit logs for 3 years for compliance reasons. By default, Cloud Logging only retains them for 400 days. Which TWO actions should you take to achieve this? (Select TWO)

Answer options:

Create a log sink in Cloud Logging.

Increase the retention period in the Cloud Logging settings to 3 years.

Route the logs to a Cloud Storage bucket with a retention policy.

Route the logs to Cloud Pub/Sub.

Take a snapshot of the Cloud Logging database.

How to approach this question

Identify the mechanism for exporting logs (sink) and the best destination for long-term, low-cost storage.

Full Answer

Create a log sink in Cloud Logging. Route the logs to a Cloud Storage bucket with a retention policy.

To retain logs beyond the default Cloud Logging retention period, you must export them. You do this by creating a Log Sink. The sink uses a filter to select the Admin Activity logs and routes them to a destination. For long-term, compliance-based archiving (3 years), a Cloud Storage bucket (often using Archive storage class and a Bucket Lock retention policy) is the most cost-effective and appropriate destination.

Common mistakes

Trying to change the retention period directly in Cloud Logging beyond its maximum limits.

Question 49 All questions

Practice the full GCP Associate Cloud Engineer Practice Exam 1

50 questions · hints · full answers · grading

More questions from this exam

Q01What is the highest level of the Google Cloud resource hierarchy?Easy Q02You need to enable the Compute Engine API in a new project using the command line. Which command ...Easy Q03You are setting up a new GCP environment. You need to grant a group of developers access to view ...Medium Q04You want to receive an email notification when your GCP spending exceeds $1000 this month. What s...Easy Q05You need to analyze your GCP billing data using complex SQL queries to understand cost trends acr...Medium

View all 50 questions →