.svg?alt=media&token=0f6df7c7-5b98-4a62-98b8-a54e38a8329e){kind=logo}
Auditing
Set up features for auditing and view auditing reports and logs
To view complete auditing reports and logs, navigate to the Diagnostics -> Audit page in the DuploCloud Portal.
Audit page in the DuploCloud Portal
You can create an S3 bucket for auditing in another account, other than the DuploCloud Master Account.
- 1.Verify that the S3 bucket exists in another account, and note the bucket name. In this example, we assume a BUCKET_REGION of us-west-2 and a BUCKET name of audit-s2-bucket-another-account.
- 2.Ensure that your S3 bucket has
Duplo Masterpermission to access theS3:PutObject. Refer to the code snippet below for an example.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::accountid:role/duplomaster"
},
"Action": "S3:PutObject",
"Resource": [
"arn:aws:s3:::arn:aws:s3:::bucknetname/*",
"arn:aws:s3:::arn:aws:s3:::bucketname"
]
}
]
}
- 1.In the DuploCloud Portal, navigate to Administrator -> System Settings.
- 2.Click the System Config tab.
Continuing the example above, configure the S3BUCKET_REGION.
- 1.Click Add. The Add Config pane displays.
- 2.From the Config Type list box, select AppConfig.
- 3.in the Key list box, enter DUPLO_AUDIT_S3BUCKET_REGION.
- 4.In the Value field, enter us-west-2.
- 5.Click Submit.
Continuing the example above, configure the S3BUCKET name.
- 1.Click Add. The Add Config pane displays.
- 2.From the Config Type list box, select AppConfig.
- 3.in the Key list box, enter DUPLO_AUDIT_S3BUCKET.
- 4.In the Value field, enter audit-s2-bucket-another-account.
- 5.Click Submit.
Your S3 bucket region and name configurations are displayed in the System Config tab. View details on the Audit page in the DuploCloud Portal.
System Config tab with AppConfigs for S3 bucket region and name
Contact your DuploCloud Support team if you have additional questions or issues.
Last modified 1mo ago