Uploaded image for project: 'OpenShift Virtualization'
  1. OpenShift Virtualization
  2. CNV-57856

Enable Kubernetes API Auditing for KubeVirt Resources

XMLWordPrintable

    • 0.42
    • False
    • Hide

      None

      Show
      None
    • False
    • None
    • ---
    • ---
    • None

      Add audit policy to track changes to:

      • kubevirt.io/VirtualMachine
      • kubevirt.io/VirtualMachineInstance
      • kubevirt.io/VirtualMachineInstanceMigration
      • cdi.kubevirt.io/DataVolume
      • cdi.kubevirt.io/DataImportCron
      • hostpathprovisioner.kubevirt.io/HostPathProvisioner
      • snapshot.kubevirt.io/VirtualMachineSnapshot
      • snapshot.kubevirt.io/VirtualMachineRestore
      • networkaddonsoperator.network.kubevirt.io/NetworkAddonsConfig
      • hco.kubevirt.io/HyperConverged
      • ssps.kubevirt.io/SSP

      Ensure logs capture:

      • VM details - name, namespace
      • User identity (name, group, role)
      • Source IP
      • Action performed (create, delete, update)
      • API server response (success, failure)

              kmajcher@redhat.com Krzysztof Majcher
              sradco Shirly Radco
              Krzysztof Majcher Krzysztof Majcher
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: