Comparing management and data event logs
Audit Trails audit logs may contain two types of events: management events and data events.
Management events
Management events include actions related to Yandex Cloud resource configuration. Audit Trails logs management events for all supported services in your Yandex Cloud account by default.
Events related to actions such as creating, updating, or deleting infrastructure components, users, or policies belong to this type of events. For instance, creating an instance group, creating a federation in Cloud Organization, or deleting a database cluster are all management events.
Data events
Data events include updates and actions related to data and resources within Yandex Cloud services. By default, Audit Trails does not log data events. You need to enable data event audit log collection individually for each supported service.
Data events can be logged for the following services: