Comparing management and data event logs

Audit Trails audit logs may contain two types of events: management events and data events.

Management eventsManagement events

Management events include actions related to Yandex Cloud resource configuration. Audit Trails logs management events for all supported services in your Yandex Cloud account by default.

Events related to actions such as creating, updating, or deleting infrastructure components, users, or policies belong to this type of events. For instance, creating an instance group, creating a federation in Cloud Organization, or deleting a database cluster are all management events.

Data eventsData events

Data events include updates and actions related to data and resources within Yandex Cloud services. By default, Audit Trails does not log data events. You need to enable data event audit log collection individually for each supported service.

Data events can be logged for the following services:

• Yandex Cloud DNS
• Yandex Key Management Service
• Yandex Lockbox
• Yandex Managed Service for MongoDB
• Yandex Managed Service for MySQL®
• Yandex Managed Service for PostgreSQL
• Yandex Object Storage
• Yandex WebSQL