UNCLASSIFIED - NO CUI

Skip to content
Snippets Groups Projects
Closed [P1BIGROCKS-1362/P1BIGROCKS-1686] Increased Auditing and Alerting
  • View options

    • [P1BIGROCKS-1362/P1BIGROCKS-1686] Increased Auditing and Alerting

  • View options
    • Closed Epic created by runyontr

    P1BIGROCKS-1362

    Cluster Auditor was built to provide insights into non-compliance of clusters and should be expanded on

    • Evaluation of Distro capabilities (RWX, Kubernetes versions, node health, etc.)
    • Better validation of Iron Bank images. Look at Cosign to have standalone signed images. Notary only validates the pull, which can't be done when deploying with an Airgap Architecture. Look at including a manifest of images as part of the Big Bang deployment and validating against a finite list of SHAs
    • Ensure email/mattermost/webhook alerting functions with Cluster Auditor events.

    Although alertmanager is used as the alerting mechanism deployed within BB, it is rarely used outside of the defaults. This epic is to introduce sane rules for which to alert on by default.

    P1BIGROCKS-1686

    Each package should have:

    • sane defaults for alerting (if this means no alerting that is also okay)

    Pre-requisites

    This epic depends on &54 (closed) to be completed before beginning

    1 of 4 checklist items completed · Edited by Ryan Garcia

    Linked items ... 0

    • Activity

    • All activity
    • Comments only
    • History only
    • Newest first
    • Oldest first
    Loading Loading Loading Loading Loading Loading Loading Loading Loading Loading

    UNCLASSIFIED - NO CUI