This article outlines the steps to identify the Stackdriver log that Aqua writes to after enabling the integration under System > Integration > Log Management > Google Cloud Logging.
5. Enter 'logName=' in the filter which opens a list of logs which includes 'projects/<project id>/logs/aquaLog. After selecting aquaLog, the Audit events are observed including the centos:6 policy failure event:
Did you find it helpful?Send feedback