Domain 5.3: Viewing audit logs — GCP ACE Practice Question 50

How to approach this question

Combine Cloud Logging export features with Cloud Storage compliance features.

Full Answer

For long-term retention of logs (beyond the default Cloud Logging limits), the best practice is to create a Log Router Sink that exports the logs to a Cloud Storage bucket. To meet strict compliance regulations (WORM - Write Once Read Many), you apply a Retention Policy to the bucket, which physically prevents deletion of the logs until the 3-year period expires.

Common mistakes

Trying to use Cloud SQL for log storage, or assuming Cloud Logging can't export data.

Your company is subject to strict compliance regulations that require all Admin Activity audit logs to be retained for exactly 3 years. By default, Cloud Logging only retains these logs for 400 days.

Which TWO actions should you take to meet this compliance requirement? (Select TWO)

How to approach this question

Full Answer

Common mistakes

Practice the full GCP Associate Cloud Engineer Practice Exam 3

More questions from this exam

Your company is subject to strict compliance regulations that require all Admin Activity audit logs to be retained for exactly 3 years. By default, Cloud Logging only retains these logs for 400 days. Which TWO actions should you take to meet this compliance requirement? (Select TWO)

How to approach this question

Full Answer

Common mistakes

Practice the full GCP Associate Cloud Engineer Practice Exam 3

More questions from this exam

Your company is subject to strict compliance regulations that require all Admin Activity audit logs to be retained for exactly 3 years. By default, Cloud Logging only retains these logs for 400 days.

Which TWO actions should you take to meet this compliance requirement? (Select TWO)