Configure HCP Vault Dedicated audit log streaming to New Relic

Prerequisites

To configure audit logs streaming to New Relic, you will need to have:

• A HCP account with Admin or Contributor role assigned in HCP

• A production grade HCP Vault Dedicated cluster

• Access to New Relic with permission to retrieve the Ingest License Key

  Note

  If you do not have a cluster running, refer to the Create a Vault Cluster on HCP or the Deploy HCP Vault Dedicated with Terraform tutorial to create an HCP Vault Dedicated cluster.

Enable audit logs streaming

1. Log in to the HCP Portal and navigate to the Vault clusters page.

2. Click the Vault cluster you wish to enable streaming for and click Audit Logs.

3. Click Enable log Streaming.

4. From the Enable audit logs streaming view, select New Relic as the provider and click Next.

5. From the Add provider details view, enter the Account ID and License key retrieved from the New Relic portal.

6. Click Save.

   Note

   At this time, HCP Vault Dedicated only supports audit logs streaming to one log endpoint at a time.

Refer to the New Relic documentation for details on log exploration.

Example Terraform configuration (optional)

Refer to the Terraform Registry hcp_vault_cluster documentation for more information.

resource "hcp_vault_cluster" "example" {
  cluster_id = "vault-cluster"
  hvn_id     = hcp_hvn.example.hvn_id
  tier       = "standard_large"
  audit_log_config {
    newrelic_account_id = "newrelic_account_id"
    newrelic_license_key = "newrelic_license_key"
    newrelic_region = "newrelic_region"
  }
}

Edit the audit log streaming configuration (optional)

To edit a audit log streaming integration, perform the following steps.

1. From the Audit Logs page, click on the Manage drop-down, then Edit configuration.

2. Edit the configuration, then click Save.

Disable audit log streaming (optional)

To disable a audit log streaming integration, from the Audit Logs page, click on the Manage drop-down, then Disable streaming.