Create and view reporting rules & set up alerts

Reporting rules are custom rules that allow you to create custom alerts based on your organization’s audit logs.

A reporting rule includes a set of conditions, and you specify what actions to perform when these conditions are met. A rule is simply a way of saying, if x happens, automatically do y. For example, you can set up a reporting rule so when a user makes a Drive file visible on the web, you receive an email notification and/or an alert center alert.

You can create, edit, and view reporting rules from the Reports page or from the Security rules page. Reporting rules are based on your organization’s audit logs. (Depending on which Google service you have, you may not have access to all audit logs.)

You can create a maximum of 50 alerts.

Note: If you create a new reporting rule, alert center alerts for that rule are turned on by default. If you want to turn on or off an alert for an existing reporting rule, you can do so from the alert center. For instructions, go to Turn alerts on or off.

Create a reporting rule from the Reports page

  1. Sign in to your Google Admin console.

    Sign in using your administrator account (does not end in @gmail.com).

  2. From the Admin console Home page, go to Reports.
  3. On the left, under Audit log, click the audit log for which you want to create a reporting rule.
  4. Click Add a filter, and select from the filter options.
    For example, for the Drive audit log, click Visibilityand thenPublic on the weband thenApply.
  5. In the top-right corner, click Create reporting rule "".
  6. Enter a name for the rule, and then specify notification methods.
    Note: You can choose to receive alert center alerts, and/or you can set up email notifications that are sent to super admins or a customizable email list.
  7. Click Create.

Create a reporting rule from the Security rules page

  1. On the Admin console Home page, click Securityand thenRules.
  2. In the top-left corner, click Create rule and select Reporting.
    The Reports page displays.
  3. On the left, under Audit log, click the audit log for which you want to create a reporting rule.
  4. Click Add a filter, and select from the filter options.
    For example, for the Drive audit log, click Visibilityand thenPublic on the weband thenApply.
  5. In the top-right corner, click Create reporting rule "".
  6. Enter a name for the rule and then add recipients.
  7. Click Create.

For more details, go to Create, edit, and view security rules.

View reporting rules

You can view the same reporting rules either from the Reports page or from the Security rules page.

To view reporting rules from the Reports page:

  1. On the Google Admin console Home page, click Reports.
  2. On the left, scroll down and click Manage Reporting Rules.

To view reporting rules from the Security rules page:

  1. On the Admin console Home page, click Securityand thenRules.
  2. Click Add a filter.
  3. Click Rule type.
  4. Check the Reporting box.
  5. Click Apply.

Related topics

 

Was this helpful?
How can we improve it?

Need more help?

Sign in for additional support options to quickly solve your issue

Search
Clear search
Close search
Google apps
Main menu
Search Help Center
true
73010
false