Hi Good People,
I’m using boundary with auth0 for SSO and vault for credential library for dynamic credential.
My question is how I can get audit log from boundary and find out which boundary user use which dynamic database crediential?
Thanks in Advance.
I believe between the controller and worker logs, all the info you need to connect these two is emitted – but you might want to set up some sort of log aggregation system like rsyslog or Splunk to make it easier to connect the info together.
It may also be worthwhile going over some of the threads in which mgaffney has posted info about the structure of the data warehouse Boundary creates in Postgres:
Boundary records most of the data you mentioned in the data warehouse. The only thing not recorded is the remote ip address of the end user. You can query the tables yourself or use a business intelligence tool if you have one available to get the data.
Here is a diagram of the data warehouse tables for reference:
The tables prefixed with wh_ are the data warehouse tables. There are 4 dimension tables and 2 accumulating fact tables. The wh_session_accumulating_fact table contains one row per session. The wh_session_connection_accumulating_fact table contains one row per connection in each session. Both of the fact tables have foreign key relationships to the 4 dimension tables.
The wh_date_dimension contains one row for each day for approximately the next 50 years. The wh_time_of_day_dimension …
We have recently improved our audit logs and created a learn guide for audit event logs: