audit history

[Lorrin Nelson]

Does Salt support storing an audit history of who issued what commands and what the results were?

I've seen the documentation page on the external job cache [1]. However, I'm confused that it sounds like it is is only concerned with returners sending data back from minions. Would it record who issued what commands on the master in the first place, and then tie in the returned results? Ideally, if I had an access control system configured [2], I'd hope the audit log would track command attempts that were denied too.

Thanks
-Lorrin

[1] https://docs.saltstack.com/en/latest/topics/jobs/external_cache.html#storing-job-results-in-an-external-system
[2] https://docs.saltstack.com/en/latest/topics/eauth/access_control.html

[David Boucha]

Yeah, the job cache records every command run, the user, the timestamp and the result.

The default job cache is file based and only keeps the jobs for 24 hours.

The external job cache allows you to keep that data in a database do you can store it for as long as you like.

I prefer the master job cache because you get the exact same result, but the minions don't know about it. The master puts all the data in. That way only the master needs credentials for your database

--
You received this message because you are subscribed to the Google Groups "Salt-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to salt-users+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.