Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.

Accessing Cloudera Navigator Audit data directly at its source

Labels:
jwood
New Contributor

Created on ‎06-06-2018 11:05 AM - last edited on ‎06-06-2018 11:35 AM by Community Manager Community Manager

Is there a way to access the Audit event log data that is provided through Cloudera Navigator directly, instead of the Navigator audit reporting tool? I am looking to access this data directly at the source to provide more customization around reporting and querying on this data. 

 

Is there a specific database within MySQL that I should be referencing, or is this data already being stored in HDFS? If it only resides in a MySQL database, I would prefer to set up processes to move that data to HDFS.

 

Thanks,

jw

2,019 Views
0 Kudos
1 REPLY 1

rufusayeni
Cloudera Employee

Created ‎10-23-2018 09:35 AM

Hello Jwood,

 

The audit sources for the Navigator audit data is as follows:

 

OS File System:

 

Each service has audit data in the OS file system, under the following path:

 

/var/log/<service>/audit

 

For example, the HDFS audit data would be located in the following path:

 

/var/log/hadoop-hdfs/audit

 

From there you would view the "hdfs-audit.log" file.

 

 

MySQL:

 

The audit data is propagated from the aforementioned audit files to Navigator Audit Server's underlying database.

 

The data is located in the following tables:

 

<SERVICENAME>_AUDIT_EVENTS

 

For example, the can find the HBASE, HDFS, and HUE audit data in the following tables:

 

- HBASE_AUDIT_EVENTS
- HDFS_AUDIT_EVENTS
- HUE_AUDIT_EVENTS

1,230 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
What's New @ Cloudera
Cloudera Machine Learning launches "Add Data" feature to simplify data ingestion
What's New @ Cloudera
Simplify Data Access with Custom Connection Support in CML
View More Announcements