Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat OpenShift Container Platform 4
Kubernetes Settings
OpenShift Kube API Server
Ensure that Audit Log Webhook Is Configured
Ensure that Audit Log Webhook Is Configured
An XCCDF Rule
Details
Profiles
Prose
Ensure that Audit Log Webhook Is Configured
Medium Severity
Audit is on by default and the best practice is to ship audit logs off an cluster for retention. HyperShift is able to do this with the a audit webhook, which is configured in the HostedCluster custom resource. The forementioned resource can be configured to log to different third party systems. For more information on this, please reference the official documentation:
https://hypershift-docs.netlify.app/reference/api/