ExpertMedium1 markMultiple Choice
GCP ACE · Question 48 · Domain 5.3: Viewing audit logs
You suspect that a user accidentally deleted a critical Compute Engine instance yesterday. You need to verify who performed the deletion and when it happened.
Which type of Cloud Audit Log should you review?
You suspect that a user accidentally deleted a critical Compute Engine instance yesterday. You need to verify who performed the deletion and when it happened.
Which type of Cloud Audit Log should you review?
Answer options:
A.
Data Access logs
B.
System Event logs
C.
Admin Activity logs
D.
Access Transparency logs
How to approach this question
Differentiate between the types of Cloud Audit Logs.
Full Answer
C.Admin Activity logs✓ Correct
Cloud Audit Logs are divided into several categories. Admin Activity logs contain log entries for API calls and administrative actions that modify the configuration or metadata of resources (e.g., creating a VM, deleting a bucket, changing IAM policies). These are enabled by default and cannot be disabled.
Common mistakes
Confusing Admin Activity (modifying resources) with Data Access (reading/writing data inside the resource).
Practice the full GCP Associate Cloud Engineer Practice Exam 4
50 questions · hints · full answers · grading
More questions from this exam
Q01You have recently joined a new team and need to set up a new Google Cloud project for a developme...EasyQ02Your company uses Google Workspace. You need to grant a new developer, Alice, the ability to view...MediumQ03You have created a new GCP project and want to deploy a Compute Engine instance. However, when yo...MediumQ04Your startup has a strict monthly cloud budget of $500. You want to be notified via email when yo...EasyQ05Your finance team wants to analyze Google Cloud costs using standard SQL and build custom dashboa...Medium