Skip to main content
Security Engine version:
Version: v1.7

Kubernetes Audit

This module allows the Security Engine to expose an HTTP server that can be used by a Kubernetes cluster to send its audit logs.

Configuration example

YAML
source: k8s-audit
listen_addr: 127.0.0.1
listen_port: 9876
webhook_path: /webhook
labels:
 type: k8s-audit

Look at the configuration parameters to view all supported options.

Parameters

listen_addr

The address on which the datasource will listen.

Mandatory.

listen_port

The port on which the datasource will liste.

Mandatory.

webhook_path

The path on which the datasource will accept requests from kubernetes.

Mandatory.

source

Must be k8s-audit

DSN and command-line

This datasource does not support acquisition from the command line.

CrowdSec Docs
We use cookies

This site uses cookies to help us improve your experience. You can accept or decline below.