Accessibility of Audit Information
Perform necessary actions to ensure that vHSM’s audit configurations follow the recommended practices for safe and unsafe audit parameters.
This health check verifies whether audit information is accessible and usable by log consumers. It ensures that vHSM’s audit configurations follow the recommended practices for safe and unsafe audit parameters.
Health Check Name: audit_visibility
Accessed APIs
READ
/sys/mounts/:mount/tune
Reads tuning parameters of the mount path.
Configuration Parameters
ignored_parameters
List
nil
A list of parameters to ignore when checking for HMAC audit status.
Health Check Results
This check provides informational feedback about whether audit data parameters are properly HMAC’d or left in cleartext as expected.
It ensures adherence to the list of safe and unsafe audit fields.
Results will not trigger warnings or errors but serve as guidance for improving audit visibility.
Recommended Actions
To improve audit log visibility and control what is HMAC’d or excluded, fine-tune the audit parameters using the following command:
Last updated
Was this helpful?