Audit logs are core components of security and observability in Kubernetes. This post explains how to ingest and store Kubernetes audit logs in Parseable. Additionally, we'll see how to setup alerts on these logs to get notified when a specific event occurs. In this example, we'll setup an alert to get notified when a user (service-account) accesses a secret.
While working with Kubernetes, Developers and DevOps engineers need to know how to troubleshoot and find issues in the application. Logs are one of the key aspects for identifying issues and failures.
Kubernetes Operator pattern allows a neat bundling of the application business logic and Kubernetes API. Operators are now widespread and make it easy for end users to deploy and manage an application on a Kubernetes cluster. We are excited to announce the release of Parseable Kubernetes Operator