You have sensitive data stored in three Cloud Storage buckets and have enabled data access logging.
You want to verify activities for a particular user for these buckets, using the fewest possible steps.
You need to verify the addition of metadata labels and which files have been viewed from those buckets.
What should you do?
Click on the arrows to vote for the correct answer
A. B. C. D.A.
The best option for verifying activities for a particular user on Cloud Storage buckets with the least number of steps would be to use the GCP Console to filter the Activity log.
Option A: Using the GCP Console, filter the Activity log to view the information.
The Activity log contains details about user activities for a specified time range on Google Cloud Platform services such as Cloud Storage, Compute Engine, and BigQuery. By filtering the Activity log, it is possible to view activities for a particular user on the three Cloud Storage buckets and verify the addition of metadata labels and which files have been viewed from those buckets. The Activity log also provides granular information about the activities performed, such as the user who performed the action, the time the action was performed, the type of action performed, and the resource the action was performed on.
Option B: Using the GCP Console, filter the Stackdriver log to view the information.
Stackdriver is a monitoring and logging service offered by Google Cloud Platform. It provides a unified view of logs, metrics, and traces from various Google Cloud Platform services. However, Stackdriver logs are general-purpose logs and may not provide detailed information about user activities on specific resources like Cloud Storage buckets. Hence, it may not be the best option for verifying activities for a particular user on Cloud Storage buckets.
Option C: View the bucket in the Storage section of the GCP Console.
While it is possible to view the contents of a bucket in the Storage section of the GCP Console, it may not provide the granular details needed to verify activities for a particular user on the three Cloud Storage buckets. Additionally, this option does not provide the ability to view metadata labels or which files have been viewed.
Option D: Create a trace in Stackdriver to view the information.
Creating a trace in Stackdriver is not a suitable option for verifying activities for a particular user on Cloud Storage buckets. Traces are used to monitor the latency of requests made to Google Cloud Platform services and may not provide the details needed to verify activities on specific resources like Cloud Storage buckets.
In conclusion, the best option for verifying activities for a particular user on Cloud Storage buckets and verifying the addition of metadata labels and which files have been viewed from those buckets would be to use the GCP Console to filter the Activity log.