Appendix B: Compliance Considerations : Use Cases: Why Logs Should be Available : Minimum Data Types
Minimum Data Types
The following minimum set of data types are required to adequately log vCloud environment activity for regulatory compliance:
*User (including system account) access.
*Action taken.
*Use of identification and authentication mechanisms.
*Start and stop of audit logs.
*Creation or deletion of system-level objects.
The audit trail entries recorded for each event must include the following details:
*Identification (ID).
*Type of event.
*Date and time.
*Success or failure.
*Origination of event.
*ID of affected data or component.