With bucket logs, you can record all activities at the bucket level.

When you configure bucket logging, you define a target bucket that stores the log files. Later, whenever you add, modify, or delete an object, VMware Cloud Director Object Storage Extension records the action in a log file.

To write bucket logs, VMware Cloud Director Object Storage Extension uses a dedicated log delivery account named System Logger. The log delivery account is a subject to the usual access control restrictions. When you configure bucket logging, VMware Cloud Director Object Storage Extension grants Write of Bucket and Read of ACL permissions on the target bucket to the System Logger account.

You can interact with log files the same way you interact with other objects in VMware Cloud Director Object Storage Extension. You can preview log files directly in VMware Cloud Director Object Storage Extension, or you can download the logs locally.

If VMware Cloud Director Object Storage Extension uses the ECS storage platform, bucket logging is impossible. The ECS storage platform does not support bucket logging.

If you use Cloudian HyperStore, you can work with bucket logs.

Activate Bucket Logging

To activate logging for a bucket, select a target bucket that stores the log files and optionally share the log files with other users.

Prerequisites

To activate bucket logging, verify that you have the required set of rights.
If you are an ... You can ...
organization administrator manage the logging configuration of buckets that users in your organization own.
organization user manage the logging configuration of your own buckets.

Procedure

  1. Log in to the VMware Cloud Director tenant portal.
  2. In the primary left navigation panel, under More, select Object Storage.
  3. In the Buckets pane, click the name of the bucket that you want to edit.
  4. Click Properties.
  5. In the Logging card, click the text.
  6. Enter the logging configuration details and click Save.
    1. Select the target bucket in which you want to store the log files.
      VMware Cloud Director Object Storage Extension grants Write of Bucket and Read of ACL permissions on the target bucket to the log delivery account named System Logger.
    2. (Optional) Enter a prefix for the log files.
    3. (Optional) To save the log files to a folder in the target bucket, select the Prefix as a folder check box.
    4. (Optional) Share the log files with other users.
      • To share the log files with users within your tenant organization, use the toggle buttons in the Tenant Users row.
      • To share the log files with authenticated users within all tenant organizations, use the toggle buttons in the Authenticated Users row.
      • To share the log files with all users, use the toggle buttons in the Public row.
      • To share the log files with specific users within your organization, click the Add User button, select the users with whom you want to share the log files, and use the toggle buttons in the corresponding row.

Results

Whenever an object is added or modified in the logging source bucket, VMware Cloud Director Object Storage Extension creates and adds a bucket log object to the logging target bucket. The owner of the log is the System Logger account.