[Solved] Why does Google Cloud Platform retain Admin Activity audit logs for 400 days by default? — Ans: To support long-term compliance and forensic investigations. | GCP

GCP - Cloud IAM Advanced

Why does Google Cloud Platform retain Admin Activity audit logs for 400 days by default?

ABecause Data Access logs are deleted immediately.

BTo support long-term compliance and forensic investigations.

CTo improve system performance by caching logs.

DBecause Admin Activity logs are small and cheap to store.

Step-by-Step Solution

Solution:

Step 1: Understand retention purpose
Long retention supports compliance rules and forensic analysis after incidents.
Step 2: Identify correct reason
Admin Activity logs are kept 400 days to meet these needs, not for performance or cost reasons.
Final Answer:
To support long-term compliance and forensic investigations. -> Option B
Quick Check:
Retention supports compliance and investigations [OK]

Quick Trick: Long retention helps compliance and investigations [OK]

Common Mistakes:

Master "Cloud IAM Advanced" in GCP

9 interactive learning modes - each teaches the same concept differently

More GCP Quizzes

Why does Google Cloud Platform retain Admin Activity audit logs for 400 days by default?