Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support & enable audit logging for Key Vault and AKS for dev & cspr environments #1375

Merged
merged 9 commits into from
Feb 27, 2025
Merged

Support & enable audit logging for Key Vault and AKS for dev & cspr environments #1375

merged 9 commits into from
Feb 27, 2025

Conversation

jfchevrette
Copy link
Collaborator

@jfchevrette jfchevrette commented Feb 20, 2025
edited
Loading

What this PR does

  • Add a Log Analytics workspace in global
    • New config flag log.enableLogAnalytics - defaults to false, true for dev and cspr)
  • Add support for Key Vault audit logging via Diagnostic Dettings
  • Enable Key Vault audit logging for the following Key Vaults in (dev & cspr only)
    • svc: svc
    • mgmt: cx, mgmt, msi
  • Enable AKS audit logging for svc and mgmt clusters (dev & cspr only)
    • kube-audit
    • Container logs

Why

These logs are being enabled only for dev/cspr environments to help with troubleshooting. Int, stage and production will use a different logging mechanism that is only available in EV2

Jira:

Special notes for your reviewer

Suggest reviewing commit by commit

@jfchevrette jfchevrette marked this pull request as ready for review February 20, 2025 17:50
@jfchevrette jfchevrette force-pushed the dev-audit-logging branch 2 times, most recently from 581d86e to c55bc6c Compare February 20, 2025 17:58
geoberle
geoberle reviewed Feb 24, 2025
View reviewed changes
Copy link
Collaborator

@geoberle geoberle left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nice work!
can you enable log analytics for eventgrid as well?

@jfchevrette
Copy link
Collaborator Author

nice work! can you enable log analytics for eventgrid as well?

Added in 75ca2cf

geoberle
geoberle previously approved these changes Feb 24, 2025
View reviewed changes
@github-actions GitHub Actions
Copy link

Please rebase pull request.

@github-actions GitHub Actions
Copy link

Please rebase pull request.

@jfchevrette jfchevrette merged commit f62915b into main Feb 27, 2025
13 checks passed
@jfchevrette jfchevrette deleted the dev-audit-logging branch February 27, 2025 15:07
@jfchevrette jfchevrette mentioned this pull request Feb 27, 2025
Merged
@jfchevrette jfchevrette restored the dev-audit-logging branch February 27, 2025 15:47
@jfchevrette jfchevrette mentioned this pull request Feb 27, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tony-schndr tony-schndr tony-schndr left review comments

@geoberle geoberle geoberle left review comments

@bennerv bennerv Awaiting requested review from bennerv bennerv is a code owner

@janboll janboll Awaiting requested review from janboll janboll is a code owner

@weinong weinong Awaiting requested review from weinong weinong is a code owner

@whober0521 whober0521 Awaiting requested review from whober0521 whober0521 is a code owner

@jmelis jmelis Awaiting requested review from jmelis jmelis is a code owner

@jonathan34c jonathan34c Awaiting requested review from jonathan34c jonathan34c is a code owner

@SudoBrendan SudoBrendan Awaiting requested review from SudoBrendan SudoBrendan is a code owner

@UlrichSchlueter UlrichSchlueter Awaiting requested review from UlrichSchlueter UlrichSchlueter is a code owner

@mmazur mmazur Awaiting requested review from mmazur mmazur is a code owner

@stevekuznetsov stevekuznetsov Awaiting requested review from stevekuznetsov stevekuznetsov is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jfchevrette @geoberle @tony-schndr