Required fields are in bold.
Contains the activity events for a specific account and application such as the Admin console application or the Google Drive application. Reference: https://developers.google.com/admin-sdk/reports/v1/reference/activities/list#response​
Column | Type | Description |
|
| Unique identifier for each activity record. |
|
| User doing the action. |
|
| The type of API resource. For an activity report, the value is reports#activities. |
|
| This is the domain that is affected by the report's event. For example domain of Admin console or the Drive application's document owner. |
|
| IP address of the user doing the action. This is the Internet Protocol (IP) address of the user when logging into G Suite which may or may not reflect the user's physical location. For example, the IP address can be the user's proxy server's address or a virtual private network (VPN) address. The API supports IPv4 and IPv6. |
|
| Activity events in the report. |
|
| Panther added standardized event time (UTC) |
|
| Panther added standardized log parse time (UTC) |
|
| Panther added field with type of log |
|
| Panther added field with unique id (within table) |
|
| Panther added field with the source id |
|
| Panther added field with the source label |
|
| Panther added field with collection of ip addresses associated with the row |
|
| Panther added field with collection of domain names associated with the row |
|
| Panther added field with collection of email addresses associated with the row |