Can you enable audit through config file?

jlixfeld · April 3, 2023, 9:15pm

Is it possible to use a config file to enable audit logs?

I’m expecting to be able to add it to my config.hcl and have audit enabled on container startup, but so far it’s not working. I’m not sure if it’s user error or if it’s unsupported.

storage "raft" {
  path    = "/vault/data"
  node_id = "node1"
}

listener "tcp" {
  address     = "0.0.0.0:8200"
  tls_disable = "true"
}

api_addr = "http://127.0.0.0:8200"
cluster_addr = "https://127.0.0.0:8201"
ui = true

audit "file" {
  enabled = true
  path = "/vault/logs/audit.log"
}

maxb · April 3, 2023, 9:18pm

Why are you expecting this?

I’m afraid you’ve just made up some syntax that doesn’t exist - audit configuration is via the API only.

Topic		Replies	Views
Audit logs for HA vault Vault	2	745	June 25, 2024
How to enable audit logs in vault cloud? Vault	3	543	September 30, 2021
Vault Audit Log - seem not working Vault	1	461	February 26, 2024
[Vault] Audit logs being written in 3 log files Vault	10	959	February 27, 2023
Reenable Audit log in Same Path which is already exist Vault	1	462	June 15, 2022

Can you enable audit through config file?

Related topics