nebius audit v2 audit-event-export start
Start audit events export to s3 bucket for specific period.
``` nebius audit v2 audit-event-export start [id] --id --labels --name --nebius-object-storage-bucket-by-id-id [required] --nebius-object-storage-object-prefix --params-event-type [required] --params-filter --params-from [required] --params-to [required] --parent-id [required] --resource-version --async ```
id
Identifier for the resource, unique for its resource type.
`--id` (string)
Identifier for the resource, unique for its resource type.
`--labels` (string->string)
Labels associated with the resource.
`--name` (string)
Human readable name for the resource.
`--nebius-object-storage-bucket-by-id-id` (string) \[required]
The id of the bucket in the tenant where the logs will be exported.
`--nebius-object-storage-object-prefix` (string)
Prefix for export objects.
Default value is `auditlogs`.
`--params-event-type` (string) \[required]
Type of audit event to filter by.
A value must be one of:
control\_plane
data\_plane
`--params-filter` (string)
Example:
service.name = 'iam' AND resource.hierarchy.id:'container-e0t' AND regex(resource.metadata.name, '^.*test.*\$')
Supported filters:
"=" - equals
"!=" - not equals
":" - contains
regex - regular expression
Fields that can be used for filtering:
action
authentication.static\_key\_credential.id
authentication.subject.service\_account\_id
authentication.subject.tenant\_user\_id
authentication.token\_credential.masked\_token
project\_region.name
resource.hierarchy.id
resource.hierarchy.name
resource.metadata.id
resource.metadata.name
resource.metadata.type
service.name
type
status.
`--params-from` (timestamp: 1970-01-31T02:30:59Z) \[required]
Returns results with a timestamp greater than or equal to this value.
`--params-to` (timestamp: 1970-01-31T02:30:59Z) \[required]
Returns results with a timestamp lower than this value.
`--parent-id` (string) \[required]
Identifier of the parent resource to which the resource belongs.
`--resource-version` (int64)
Version of the resource for safe concurrent modifications and consistent reads.
Positive and monotonically increases on each resource spec change (but *not* on each change of the
resource's container(s) or status).
Service allows zero value or current.
`--async` (bool)
If set, returns operation id. Otherwise, waits for the operation to complete and returns its resource.
`-h, --help` (bool)
Show this message.
`-p, --profile` (string)
Set a profile for interacting with the cloud.
`--format` (string)
Output format. Supported values: yaml|json|jsonpath|table|text.
`-f, --file` (string)
Input file. For 'update' commands automatically set --full=true.
`-c, --config` (string)
Provide path to config file.
`--debug` (bool)
Enable debug logs.
`--color` (bool)
Enable colored output.
`--no-browser` (bool)
Do not open browser automatically on auth.
`--insecure` (bool)
Disable transport security.
`--auth-timeout` (duration: 2h30m10s)
Set the timeout for the request including authentication process, default is 15m0s.
`--per-retry-timeout` (duration: 2h30m10s)
Set the timeout for each retry attempt, default is 20s.
`--retries` (uint)
Set the number of retry attempts, 1 is disable retries, default is 3.
`--timeout` (duration: 2h30m10s)
Set the timeout for the main request, default is 1m0s.
`--no-check-update` (bool)
Suppress check for updates.
`--no-progress` (bool)
Suppress progress indicators and spinners.