Can you enable audit through config file?

jlixfeld · April 3, 2023, 9:15pm

Is it possible to use a config file to enable audit logs?

I’m expecting to be able to add it to my config.hcl and have audit enabled on container startup, but so far it’s not working. I’m not sure if it’s user error or if it’s unsupported.

storage "raft" {
  path    = "/vault/data"
  node_id = "node1"
}

listener "tcp" {
  address     = "0.0.0.0:8200"
  tls_disable = "true"
}

api_addr = "http://127.0.0.0:8200"
cluster_addr = "https://127.0.0.0:8201"
ui = true

audit "file" {
  enabled = true
  path = "/vault/logs/audit.log"
}

maxb · April 3, 2023, 9:18pm

Why are you expecting this?

I’m afraid you’ve just made up some syntax that doesn’t exist - audit configuration is via the API only.

Topic		Replies	Views
How to enable audit logs in vault cloud? Vault	3	401	September 30, 2021
Vault Audit Log doesn't attempt to use the VAULT_ADDRESS varible Vault	3	831	December 4, 2020
Vault Audit Log - seem not working Vault	1	256	February 26, 2024
Audit logs for HA vault Vault	2	630	June 25, 2024
Vault with Docker Compose Vault	7	35274	September 22, 2021

Can you enable audit through config file?

Related topics