Monitoring, logging and runtime security, labs – use audit logs to monitor access

Can someone please post the kube-apiserver.yaml file that has been verified and the api-server comes back on line?

I must be doing something wrong because my api-server never comes back.

I would like to diff a workable file with my own to determine where I am going wrong…

Thanks,

Okay, I went though the volumes and vol mounts only. - worked
then I added:

• –audit-log-path=/var/log/prod-secrets.log
• –audit-log-maxage=30
  The api server came up okay.
  Then I added the last line:
• –audit-policy-file=/etc/kubernetes/prod-audit.yaml
  And the server never came back up… the file /etc/kubernetes/prod-audit.yaml exists with the code provided by KodeKloud.

I am stumped…

Resolved: Indenting issues.