ActionTrail records the operations acting upon your Alibaba Cloud resources, you can use these records to analyze your account security, track changes made to your resources, and achieve compliance.
ActionTrail records operations taken in the Alibaba Cloud console, SDKs, and APIs (including API calls triggered through the console). It then transfers these records to the OSS buckets you specify in 10 minutes after an activity occurs, and store the records in a standard format as logs. You can access the last 30 days of records through OSS, the ActionTrail console, and APIs. You can also leverage all the features of OSS to manage the records, such as access control, lifecycle management, and archiving.
You can create a trail for your account by using the console or API. The trail sends logs of events to the OSS bucket you specify. You can view the logs in the OSS bucket or through the ActionTrail console.
You can use data encryption and permission control provided by OSS to ensure data security of your logs.
You can query operations by multiple dimensions such as operation time, username, resource type, resource name, and operation name. ActionTrail helps you to identify problems and track security incidents quickly.
You are only charged for using OSS, ActionTrail is free.