Monitoring mail logs

[Sebastian Dooris]

Hi All,

I've been tasked with integration of a Google Workspaces for Education account with SIEM. Is there any way to programmatically fetch mail logs as seen within "Email log search" and dump out to csv at regular intervals. 

Had hoped GAM/GAMADV could just query this but can't seem to figure out how. 

--

Sebastian Dooris

Information Security Officer,

Information Systems and Services,

Deirdre Thornton Room, Dublin City University,

Glasnevin, Dublin 9, Ireland.
Web: http://www.dcu.ie/iss/

Tel: +353 1 700 8228

Mob: +353 86 3322033

Mail: sebastia...@dcu.ie

PGP Key ID: 0xd7bf6041f0b8cc31

Séanadh Ríomhphoist/Email Disclaimer
Tá an ríomhphost seo agus aon chomhad a sheoltar leis faoi rún agus is lena úsáid ag an seolaí agus sin amháin é. Is féidir tuilleadh a léamh anseo. 
This e-mail and any files transmitted with it are confidential and are intended solely for use by the addressee. Read more here.

 

[Jay Lee]

The only way to access these logs programmatically is by dumping them to BigQuery and accessing them there. That will require an Enterprise license. See:

https://support.google.com/a/answer/7233312?hl=en

Jay

--
You received this message because you are subscribed to the Google Groups "GAM for Google Workspace" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-apps-man...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-apps-manager/CAF91euYwp6Yt2bv5SvyzYYH%3Dr2A_zfKiJw4v169skkGFmyFvuw%40mail.gmail.com.

[Ian Crew]

What Jay said. https://support.google.com/a/topic/9079469 might be helpful too.

Ian

To view this discussion on the web visit https://groups.google.com/d/msgid/google-apps-manager/CA%2BVVBp8p3GWTYXLeEmF1qgBXwAorpQP0hvYuiykdDPNKXP3Y-w%40mail.gmail.com.

 

Ian Crew Solutions Architect Productivity & Collaboration Services Berkeley IT