WUYING Workspace Enterprise Edition provides log queries, session recording audits, and monitoring and alerts for administrator operations, end user activities, and file transfers.
01 Operation logs
Operation logs let you monitor and audit what administrators and end users do. Administrator operation logs capture how cloud computers are accessed and managed — through the console, OpenAPI, and other channels. End user operation logs capture actions such as starting, stopping, restarting, resetting, connecting to, and disconnecting from cloud computers. Together, the logs give you a reliable basis for security analysis, resource change tracking, and compliance audits.
1.1 Administrator operation logs
Administrator operation logs are powered by Alibaba Cloud ActionTrail. Use them to monitor and audit activity in your Alibaba Cloud account for security analysis, resource change tracking, and compliance audits.
|
1.2 User operation logs
End user operation logs capture activity such as connecting to cloud computers and powering them on or off. Query the logs to spot abnormal behavior.
|
1.3 Deliver user operation logs to an SLS Logstore
WUYING Workspace Enterprise Edition can deliver end user operation logs to a Simple Log Service (SLS) Logstore for auditing and alerting on suspicious operations to prevent information leakage.
|
1.4 File transfer logs
File transfer logs capture detailed records of files that end users move between cloud computers and their local devices — including transfers made through the clipboard and the file transfer module. Query the logs to spot abnormal behavior.
|
02 Session recording audit
2.1 Session recording audit policy
To meet your organization's security and audit requirements, you may need to audit operations on cloud computers. The screen recording audit feature, which is in public preview, allows you to use a cloud computer policy to capture user activities on cloud computers as videos for later playback.
Screen recording may affect end user privacy. Before you enable this feature, ensure you have obtained the necessary authorization from them.
|
03 Monitoring and alerts
Monitoring and alerting covers workspace distribution, resource usage, session connections, and network status to help you discover and resolve issues proactively.
3.1 Configure alert rules
Monitoring shows workspace resource usage and session connection status. Alerting uses these metrics to report problems before they affect business.
An alert rule defines the conditions for triggering an alert, including the metric, threshold, severity, and effective time period.
|
3.2 Monitoring dashboard
The monitoring dashboard displays aggregated metrics for your cloud computers, providing a high-level view of their usage, distribution, and overall resource health.
|
3.3 Session monitoring
Session monitoring lets administrators view and manage end user sessions and provide remote assistance.
|
3.4 Real-time monitoring
Real-time monitoring shows end user logon data: online user count, top ten users by online duration, average logon time, and workspace network latency distribution. It also surfaces fault warnings for resource, network, or external operation issues.
|
3.5 Workspace monitoring
Metric graphs show how cloud computer metrics change over a specified period.
Monitoring charts track workspace metric changes over time.
|
icon in the upper-right corner. The records are exported as an Excel file and downloaded to your device.