Filtering roles
Locate the dse.yaml
configuration file. The location of this file depends on the type of installation:
-
Package installations:
/etc/dse/dse.yaml
-
Tarball installations:
<installation_location>/resources/dse/conf/dse.yaml
Set up activity tracking of specific login roles in the audit_logging_options section of the dse.yaml
.
audit_logging_options:
enabled: true
logger: <logger_name>
# included_categories:
# excluded_categories:
# included_keyspaces:
# excluded_keyspaces:
# included_roles:
# excluded_roles:
where <logger_name>
is SLF4JAuditWriter
or CassandraAuditWriter
.
By default, both roles parameters are commented out and therefore events are captured for all roles. Use only one of the following parameters to limit the roles whose activity is tracked:
-
included_roles
- Includes only matching roles; excludes all others. -
excluded_keyspaces
- Excludes matching roles; includes all others.
Match roles using a comma-separated list of names.
Example
Events of all roles except for dse_admin
and jim
are captured.
audit_logging_options:
enabled: true
logger: CassandraAuditWriter
# included_categories:
# excluded_categories:
# included_keyspaces:
# excluded_keyspaces:
# included_roles:
excluded_roles: dse_admin, jim