►
From YouTube: Stream audit events to Google Cloud
Description
This video shows how we can enable audit event streaming from GitLab instance to Google Cloud.
documentation: https://docs.gitlab.com/ee/administration/audit_event_streaming/graphql_api.html#google-cloud-logging-streaming
A
Hello,
I
am
harshima
I
work
as
a
back-end
engineer
in
compliance
team
today,
I'm
going
to
show
you
how
we
can
enable
audit
event
streaming
to
Google
Cloud
logging
service.
This
feature
was
in
version
of
16.1.
For
this
to
work.
You
need
an
owner
role
for
a
top
level
group
and
a
Google
project
with
necessary
permissions
to
create
service
accounts
and
enable
Google,
Cloud
login.
A
So
if
you
see
the
input,
we
need
group
path,
which
is
the
path
of
top
level
group
you
want
to
enable
streaming
for.
Then
we
have
Google
project,
ID,
client,
email
and
private
key.
These
three
Fields
will
be
provided
by
Google
Cloud.
Then
we
have
log
ID
name
now,
let's
go
to
Google
Cloud
console
and
enable
our
Cloud
logging
API
visit
API
and
services
enable
API
and
services
search
for
cloud.
Login,
API.
A
Visit
this
great
service
account
I'm,
going
to
name
this
auditor
create
and
continue
select
a
role
make
sure
you
select
login
admin
here
continue
and
done
now
to
get
the
credential.
We
need
to
create
a
key
for
this
account.
So
click
on
this
click
on
case
add
a
rate
neutral,
make
sure
the
Json
type
is
selected,
because
we
use
that
now.
Click
on
three.
A
A
And
run
so,
this
is
created
a
Google
Cloud
logging
configuration
and
now
we
can
test
audit
event
streaming
so
inside
my
issue,
reproduce
group
I
have
a
project
here.
I
am
going
to
change
some
settings
which
will
produce
a
audit
event.
Let's
go
to
merge
request
then
maybe
I
can
disable
this
in
settings.