search

scality / metalk8s

An opinionated Kubernetes distribution with a focus on long-term on-prem deployments
Apache License 2.0
355 stars 45 forks source link

Set up K8s auditing #89

Open NicolasT opened 6 years ago

NicolasT commented 6 years ago

Enterprise customers require auditing of system interactions. Let's set up K8s auditing by default.

See https://kubernetes.io/docs/tasks/debug-application-cluster/audit/

Salt API K8s API

Zempashi commented 5 years ago

Is that enabled by default in the last revision of Kubespray ?

NicolasT commented 5 years ago

There's a var for it in the Kubespray version integrated in 1.1, but I'm not sure it's enabled by default.

thomasdanan commented 4 years ago

Let's consider this in the context in Metal2. In addition to being a security requirement from customers, it is also a source of information that can be used when some issues/alerts are fired on the system. We know some tools exist on the market and consume leef format so would be nice to have this option or to have it by default.