vhsm audit
Learn about managing vHSM audit devices
The vhsm audit command manages vHSM's audit devices, allowing users to list, enable, and disable them.
Usage
Available Subcommands:
Enables an audit device
Disables an audit device Note: After an audit device is disabled, HMAC values for log comparison are no longer available, even if the device is re-enabled.
Lists enabled audit devices
vhsm audit enable
vhsm audit enableEnables an audit device at a specified path. If an audit device already exists at that path, an error is returned.
Example
Output
Available Options
-description
string
""
Human-friendly description of the audit device
-local
bool
false
Marks the audit device as local-only (not replicated)
-path
string
""
Unique path where the audit device is accessible
vhsm audit disable
vhsm audit disableDisables an audit device at a specified path. The command is idempotent, meaning it succeeds even if the audit device is not enabled at the path.
Example
Output
Note: Once disabled, audit logs will no longer be sent to the device, and HMAC values cannot be used for comparison.
Available Options:
No additional flags beyond standard command flags.
vhsm audit list
vhsm audit listLists all enabled audit devices along with their configurations.
Example
Output
Example of detailed view
Output
Available Options
-format
string
"table"
Output format: "table", "json", or "yaml"
-detailed
bool
false
Shows detailed information, including options and replication status
Last updated
Was this helpful?