From the course: Certified Kubernetes Security Specialist (CKS) Cert Prep

Unlock this course with a free trial

Join today to access over 24,900 courses taught by industry experts.

Configure backend log storage

Configure backend log storage - Kubernetes Tutorial

From the course: Certified Kubernetes Security Specialist (CKS) Cert Prep

Start my 1-month free trial Buy for my team

Configure backend log storage

- In this demonstration, we're going to take a quick look at how we can create a backend and allow us to be able to aggregate all these various logs and audit files that we're creating, and a way to be able to query them and things like that. Now we could just use JQ grab, you know, the ways that we've shown in previous lessons. If I wanted to, I can even use a capability that JQ has to be able to create filters. So if I want to take a look at a filter list here, this is one that is easily showing some various things we might want to look for. So for example, pod deletion or executing into a pod, or pod creation, configmap creation, secrets creation and deletion. Like these are the types of things potentially as a policy thing you would want to make sure that you're inspecting. Now, when it comes to the utilization of this, it's actually fairly easy to be able to just go and take a simple tail F. So here we're going to do a tail F. We're going to look at that audit.log, we're going to…

Contents