If you want to comprehensively monitor and audit OpenAPI operations in Service Mesh (ASM), you can use the OpenAPI operation audit feature of ASM to record and trace operations of users, and thus improve the mesh security and traceability.
Prerequisites
Procedure
Log on to the ASM console. In the left-side navigation pane, choose .
On the Mesh Management page, click the name of the ASM instance. In the left-side navigation pane, choose .
In the ActionTrail console, choose in the left-side navigation pane.
By default, you can query events that are generated in the last 90 days on the Event Query page. You can select an appropriate method to query events in different scenarios.
Scenario
Query method
References
Query events that were generated in the last 90 days
Perform event detail queries.
You can perform event detail queries to query management events that were generated in the last 90 days. You can specify only one filter condition for each event detail query.
Query events that were generated more than 90 days ago
Perform advanced event queries.
If you enable the advanced event query feature for an existing trail, you can perform advanced event queries to query management events and Insights events that were generated more than 90 days ago. You can specify multiple filter conditions for each advanced event query.
Query exceptional operations
Perform Insights event queries.
You can perform Insights event queries to query exceptional operations that were performed in specific scenarios in the last 90 days. You can specify only one filter condition for each Insights event query. For example, an IPInsight event helps you gain an insight into an operation that was performed from an unusual IP address and identify potential risks at the earliest opportunity. You can perform online queries of IPInsight events that were generated in the last 90 days.