Created on 04-08-2025 01:34 AM
In today's digital age, data security and compliance are paramount. Organizations handling sensitive information, especially in cloud environments, need robust tools to monitor and audit user activities. Cloudera Data Platform (CDP) offers a comprehensive auditing system to keep track of who's doing what in your environment. In this article, we'll delve into the world of audits in CDP Cloudera, explaining why they are essential and how to use them effectively.
- There are two primary methods to access audit information in CDP Cloudera:
The CDP Management Console provides a user-friendly interface for managing and accessing audit data.
Navigate to the 'audits' section within the Management Console to retrieve audit events.
2. CDP Command Line Interface (CLI):
If you prefer command-line access, you can use the CDP CLI. Use the following command to list audit events:
cdp audit list-events --from-timestamp Start-Time --to-timestamp End-Time --event-source iam --event-name "InteractiveLogin"
This command fetches audit events for the specified time range, event source, and event name.
I have added the above example of the Stop Data Hub Clutser event.
# cdp audit list-events --from-timestamp 2023-11-06T13:36:18.036Z --to-timestamp 2023-11-06T17:36:18.036Z --event-source datahub --event-name "stopCluster" --result-code "SUCCESS" { "auditEvents": [ { "version": "1.1.0", "id": "a0b57964-7bea-41d1-afc5-0fa7288d4868", "eventSource": "datahub", "eventName": "stopCluster", "timestamp": 1699280001302, "actorIdentity": { "actorCrn": "crn:altus:iam:us-west-1:65e2e6e4-60dc-######:user:######" }, "accountId": "65e2e6e4-60dc-4358-91a1-cbdc804f6303", "requestId": "bfcb1a11-b0db-422c-af2e-b4db523a6681", "resultCode": "SUCCESS", "apiRequestEvent": { "responseParameters": "{ }", "mutating": false } } ] }
Let's break down the provided command and its output step by step:
We can determine who performed the Data hub stop activity based on the actor identity provided in the output:
In conclusion, audits in CDP Cloudera are essential for maintaining security, compliance, and operational efficiency. Whether you choose the Management Console or the CLI, accessing audit information is straightforward and invaluable for monitoring user activities within your environment.