OpenBao
Using the audit log for alerts? #909
-
|
Our existing secrets solution is a secret git repo. For every git commit we send an email to a group email which we monitor. I would like to setup something similar for our in design OpenBao installation. At present I plan to tail the log and filter for audit lines of interest and then send an appropriate alert. Would love to know what other folks are doing and with what tools? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
\o hey @lollipopman -- I had mentioned this in #553, but one of the things I'd like to see is a pluggable audit subsystem. Then you could do eventing and alerting natively from OpenBao and ensure delivery (or ignore the error as you'd prefer). Otherwise, I think the solution would be to audit log (passing it to the long-term storage system), and then integrate this tooling on the other side after delivery had been guaranteed. |
Beta Was this translation helpful? Give feedback.
-
|
Thanks @cipherboy, that approach sounds sensible for the initial design and if a pluggable audit subsystem arrives later, I can re-tool. |
Beta Was this translation helpful? Give feedback.
\o hey @lollipopman -- I had mentioned this in #553, but one of the things I'd like to see is a pluggable audit subsystem. Then you could do eventing and alerting natively from OpenBao and ensure delivery (or ignore the error as you'd prefer).
Otherwise, I think the solution would be to audit log (passing it to the long-term storage system), and then integrate this tooling on the other side after delivery had been guaranteed.