1 of 2

Auditing

Setting up Auditing in the DuploCloud Portal Standard Observability Suite

The DuploCloud Standard Observability Suite generates audit trails using OpenSearch. Enabling logging is a prerequisite for audit functionality.

In the DuploCloud Portal, navigate to Administrator -> Observability -> Standard -> Settings -> Audit and click the Enable Audit link.

Once enabled, the Audit view is accessible at Administrator -> Observability ->Audit. See the topic for further details.

Custom Kibana Audit URL

Configure a custom Kibana URL for viewing audit logs from DuploCloud

DuploCloud provides a default Kibana URL for viewing audit logs, but if you want to update filters or customize further, you can override the default with these settings.

Configuring a Custom Kibana Audit URL

Log in to the DuploCloud Portal.
Navigate to Administrator -> System Settings -> System Config.
Click Add. The Add Config pane displays.
In the Config Type list box, select AppConfig.
In the Key list box, choose one of the following keys:
- Kibana Base URL: This URL points to the proxy or direct-access Kibana instance.
- Kibana Audit URL Template: This URL template links to Kibana’s Audit logs.
In the Value field, enter the custom URL for the selected key. For example:
- For Kibana Base URL: /proxy/kibana
- For Kibana Audit URL Template: https://kibana.example.com/app/discover#/?_a=(query:(language:kuery,query:'log_type:"audit"'))&_g=(time:(from:now-1h,to:now))

You can customize the example URLs, replacing placeholders with your own values and modifying the query string to adjust the filters:

log_type: Filter by log type (e.g., "audit", "application").

Click Submit to save the configuration.

After configuring the Kibana URL in DuploCloud, you can access Kibana Audit data directly from the DuploCloud Portal:

Navigate to Administrator -> Observability -> Audit.

Custom Kibana Audit URL

Configure a custom Kibana URL for viewing audit logs from DuploCloud

DuploCloud provides a default Kibana URL for viewing audit logs, but if you want to update filters or customize further, you can override the default with these settings.

Configuring a Custom Kibana Audit URL

Log in to the DuploCloud Portal.
Navigate to Administrator -> System Settings -> System Config.
Click Add. The Add Config pane displays.
In the Config Type list box, select AppConfig.
In the Key list box, choose one of the following keys:
- Kibana Base URL: This URL points to the proxy or direct-access Kibana instance.
- Kibana Audit URL Template: This URL template links to Kibana’s Audit logs.
In the Value field, enter the custom URL for the selected key. For example:
- For Kibana Base URL: /proxy/kibana
- For Kibana Audit URL Template: https://kibana.example.com/app/discover#/?_a=(query:(language:kuery,query:'log_type:"audit"'))&_g=(time:(from:now-1h,to:now))

You can customize the example URLs, replacing placeholders with your own values and modifying the query string to adjust the filters:

log_type: Filter by log type (e.g., "audit", "application").

Click Submit to save the configuration.

After configuring the Kibana URL in DuploCloud, you can access Kibana Audit data directly from the DuploCloud Portal:

Navigate to Administrator -> Observability -> Audit.

Auditing

Custom Kibana Audit URL

hashtagConfiguring a Custom Kibana Audit URL

Auditing

Custom Kibana Audit URL

hashtagConfiguring a Custom Kibana Audit URL

Configuring a Custom Kibana Audit URL

Configuring a Custom Kibana Audit URL