Loading...

XML

Word

Printable

Type: Story
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: CNV Install, Upgrade and Operators
Labels:
- cnv-observability

Story Points:
0.42
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Epic Link:
CNV-49854
Component Fix Version(s):
None
[QE] How to address?:
---
[QE] Why QE missed?:
---
Market:

Regression:
None

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Since virtctl commands to interact with VMIs do not use kube-apiserver (cluster audit logger), we can use Kubernetes Auditing implementation and use a local volume/webhook to audit log virtctl requests in virt-api.

Ensure ‘oc adm node-logs --role=master --path=’ and ‘oc adm must-gather – /usr/bin/gather_audit_logs’ can get audit logs from virt-api

ref: https://docs.google.com/document/d/1aN_TunfOp6gXhpQU4YAnukfGvtwE3bFbNEQcjKnHvUE/edit

is depended on by

CNV-50477 Add Audit logs for virtctl requests regarding interaction with VMIs

New

relates to

CNV-39031 [spike] Check what work we can do with Audit Log

Closed

Assignee:: João Vilaça

Reporter:: João Vilaça

QA Contact:: Natalie Gavrielov

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2024/10/29 1:50 PM

Updated:: 2024/11/13 2:41 PM