Audit logs are records of the operations performed on the storage cluster. Audit logs allow you to verify "when" "who" did what" to see if each operation complies with audit standards such as laws, regulations, industrial standards, and in-house stipulations.
Audit logs are subject to the following capacity limits:
-
Maximum number of characters per line (event): 8,192 bytes (including line feed code). If the maximum number of characters is exceeded, the excess characters are truncated.
-
Maximum number of events: 750,000
-
Maximum capacity: 5,859 MiB
If the maximum capacity or the maximum number of events for an audit log has been reached, old information will be overwritten with new information. To prevent old information from being lost, you can configure the system to transfer audit logs to the syslog server.
(Bare metal) VSP One SDS Block creates audit log data for only the events that occurred on storage nodes. For the audit log data for other events that occurred in software or hardware other than storage nodes (such as a physical server or switch), see the audit log for the relevant software or hardware.
(Cloud) VSP One SDS Block creates audit log data for only the events that occurred in the VMs of storage nodes. For the audit logs for the events that occurred in the AWS environment outside of a VM, confirm the audit logs of AWS.