Audit Log Configuration¶
Audit logs can be configured to be stored in cloud storage such as S3 or ADLS Gen2.
Configuration Settings¶
The following configuration settings are used to configure audit log storage:
WATCHER_AUDIT_LOG_DST_DIRWATCHER_S3_REGIONWATCHER_S3_ENCRYPTWATCHER_AUDIT_UPLOAD_INTERVAL_SEC
Configuring Audit Log Storage on S3¶
To store audit logs on S3, specify an S3 path where these logs will be stored. This location should be in the Okera S3 storage you created in the Prerequisites section.
An example configuration will have:
WATCHER_AUDIT_LOG_DST_DIR: s3://company/okera/audit
WATCHER_S3_REGION: us-east-1
WATCHER_S3_ENCRYPT: true
Configuring Audit Log Storage on ADLS Gen2¶
To store audit logs on ADLS Gen2, specify an ADLS path where the logs will be stored. This location should be in the Okera ADLS storage you created in the Prerequisites section.
An example configuration will have:
WATCHER_AUDIT_LOG_DST_DIR: abfss://<file_system>@<account_name>.dfs.core.windows.net/mypath/audit
Configuring Audit Log Storage on Google Cloud Storage¶
To store audit logs on Google Cloud Storage (GCS), specify a GCS path where these logs will be stored. This location should be in the Okera Google Cloud Storage you created in the Prerequisites section.
An example configuration will have:
WATCHER_AUDIT_LOG_DST_DIR: gs://company/okera/audit
Configuring Upload Intervals¶
By default, ODAS will upload audit logs every 5 minutes, but this can be modified by setting the WATCHER_AUDIT_UPLOAD_INTERVAL_SEC value to a different number of seconds.
For example, to configure ODAS to upload the audit logs every 15 seconds:
WATCHER_AUDIT_UPLOAD_INTERVAL_SEC: 15