Configure HCP Vault Dedicated audit log streaming to Grafana Cloud

Prerequisites

To configure audit logs streaming to Grafana Cloud, you will need to have:

• A HCP account with the Admin role assigned

• An essentials or standard tier HCP Vault Dedicated cluster

• A Grafana Cloud Logs endpoint URL, username, and password

  Note

  If you do not have a cluster running, refer to the Create a Vault Cluster on HCP or the Deploy HCP Vault Dedicated with Terraform tutorial to create an HCP Vault Dedicated cluster.

Enable audit logs streaming

1. From the HCP Vault Dedicated cluster Overview page, select the Audit Logs view.

2. Click Enable Streaming.

3. From the Enable audit logs streaming view, select Grafana Cloud as the provider and click Next.

4. Under Grafana Cloud configuration, enter your Endpoint URL, and Grafana Cloud user and Grafana Cloud password.

5. Click Save.

   Note

   At this time, HCP Vault Dedicated only supports audit logs streaming to one log endpoint at a time.

Refer to the Grafana Cloud Logs documentation for instructions on log querying and visualizations.

Example Terraform configuration (optional)

Refer to the Terraform Registry hcp_vault_cluster documentation for more information.

resource "hcp_vault_cluster" "example" {
  cluster_id = "vault-cluster"
  hvn_id     = hcp_hvn.example.hvn_id
  tier       = "standard_large"
  audit_log_config {
    grafana_user = "actual-user"
    grafana_password = "actual-password"
    grafana_endpoint = "actual-url"
  }
}

Edit the audit log streaming configuration (optional)

To edit a audit log streaming integration, perform the following steps.

1. From the Audit Logs page, click on the Manage drop-down, then Edit configuration.

2. Edit the configuration, then click Save.

Disable audit log streaming (optional)

To disable a audit log streaming integration, from the Audit Logs page, click on the Manage drop-down, then Disable streaming.