Configure HCP Vault audit logs streaming to New Relic
This tutorial covers configuration of HCP Vault audit logs streaming to your existing New Relic environment.
Availability
HCP Vault audit logs streaming is available for all production grade clusters. The feature is not available for Development tier clusters.
Prerequisites
To configure audit logs streaming to New Relic, you will need to have:
Access to New Relic with permission to retrieve the Ingest License Key
An HCP account with Admin or Contributor role assigned in HCP
A production grade HCP Vault cluster
Note
If you don't have a cluster running, refer to the Create a Vault Cluster on HCP tutorial to create an HCP Vault cluster through HCP Portal. Or, refer to the Deploy HCP Vault with Terraform tutorial to provision an HCP Vault cluster using Terraform.
Enable audit logs streaming
Log in to the HCP Portal and navigate to the Vault clusters page.
Click the Vault cluster you wish to enable streaming for and click Audit Logs.
Click Enable log Streaming.
From the Enable audit logs streaming view, select New Relic as the provider and click Next.
From the Add provider details view, enter the Account ID and License key retrieved from the New Relic portal.
Click Save.
Note
At this time, HCP Vault only supports audit logs streaming to one log endpoint at a time.
Refer to the New Relic documentation for details on log exploration.
Edit the audit log streaming configuration
To edit a audit log streaming integration, perform the following steps.
From the Audit Logs page, click on the Manage drop-down, then Edit configuration.
Edit the configuration, then click Save.
Disable audit log streaming
To disable a audit log streaming integration, from the Audit Logs page, click on the Manage drop-down, then Disable streaming.