Viewing Google Workspace CSE Records
This section describes the logs of Google Workspace events. Whenever an action is performed on an endpoint, an event is logged. The actions can be rotate keys, create endpoint, delete endpoint, wrap, unwrap, privileged-unwrap, private key sign, private key unwrap, and private key privileged-unwrap.
To view Google Workspace CSE events:
Open the CipherTrust Manager Application.
In the left pane, click Records > Loki Audit Records. The default Server Records tab shows the following details:
Column | Description |
---|---|
Status | Status of the event. |
Event Created | Time when the event is created. |
Severity | Severity of the event. The severity can be: • INFO • WARNING • ERROR • CRITICAL • FATAL |
Message | Description of the event. |
Service | Name of the service that logged the event. |
Details | Details of the event. |
Source | Hostname of the CipherTrust Manager. |
Note
In some cases, you might see the following error:invalid authorization token - cause: untrusted authentication token: square/go-jose/jwt: validation field, token issued in the future (iat)
To resolve this issue, add the Google NTP server to the CipherTrust Manager (Admin Settings > NTPs).