About audit logs

Virtual Storage Platform One SDS Block Audit Log Guide

Version
1.13.x
Audience
anonymous
Part Number
MK-24VSP1SDS005-00

Audit logs are records of the operations performed on the storage cluster. Audit logs allow you to verify "when" "who" did what" to see if each operation complies with audit standards such as laws, regulations, industrial standards, and in-house stipulations.

Audit logs are subject to the following capacity limits:

  • Maximum number of characters per line (event): 8,192 bytes (including line feed code). If the maximum number of characters is exceeded, the excess characters are truncated.

  • Maximum number of events: 750,000

  • Maximum capacity: 5,859 MiB

If the maximum capacity or the maximum number of events for an audit log has been reached, old information will be overwritten with new information. To prevent old information from being lost, you can configure the system to transfer audit logs to the syslog server.

(Virtual machine) Hitachi Virtual Storage Platform One SDS Block (VSP One SDS Block) provides an audit log of events that occur in the VMs of storage nodes. For events that occur in non-VM hardware or software (for example, VMware ESXi on which VMs run, physical servers, and switches), verify the audit log for the hardware or software.

(Bare metal) VSP One SDS Block creates audit log data for only the events that occurred on storage nodes. For the audit log data for other events that occurred in software or hardware other than storage nodes (such as a physical server or switch), see the audit log for the relevant software or hardware.

(Cloud) VSP One SDS Block creates audit log data for only the events that occurred in the VMs of storage nodes. For the audit logs for the events that occurred in the AWS environment outside of a VM, confirm the audit logs of AWS.