This tutorial covers configuration of HCP Vault audit logs streaming to your existing Grafana Cloud environment.
Availability: HCP Vault audit logs streaming is available for all production grade clusters. The feature is not available for Development tier clusters.
To configure audit logs streaming to Grafana Cloud, you will need to have:
- A Grafana Cloud Logs endpoint URL, username, and password
- An account with Admin or Contributor role assigned in HCP
- A production grade HCP Vault cluster
If you don't have a cluster running, refer to the Create a Vault Cluster on HCP tutorial to create an HCP Vault cluster through HCP Portal. Or, refer to the Deploy HCP Vault with Terraform tutorial to provision an HCP Vault cluster using Terraform.
From the HCP Vault cluster Overview page, select the Audit Logs view.
Click Enable Streaming.
From the Enable audit logs streaming view, select Grafana Cloud as the provider.
Under Grafana Cloud configuration, enter your Endpoint URL, and Grafana Cloud user and Grafana Cloud password.
NOTE: At this time, HCP Vault only supports audit logs streaming to one log endpoint at a time.
Refer to the Grafana Cloud Logs documentation for instructions on log querying and visualizations.
To edit a audit log streaming integration, perform the following steps.
From the Audit Logs page, click on the Manage drop-down, then Edit configuration.
Edit the configuration, then click Save.
To disable a audit log streaming integration, from the Audit Logs page, click on the Manage drop-down, then Disable streaming.