Kafka Audit Logs

The following section documents environment variables for configuring AIStor to publish audit logs to a Kafka broker.

The top-level configuration key for defining a Kafka broker target for publishing AIStor audit logs.

Example

Settings

Enable

Set to “on” to enable the target. Set to “off” to disable the target.

Brokers

A comma-separated list of Kafka broker addresses.

Topic

The name of the Kafka topic to associate to AIStor audit log events.

TLS

Set to “on” to enable TLS connectivity to the specified Kafka brokers. Defaults to “off”.

TLS Skip Verify

Set to “on” to direct AIStor to skip verification of the Kafka broker TLS certificates.

SASL

Set to “on” to direct AIStor to use SASL to authenticate against the Kafka brokers.

SASL Username

The SASL username AIStor uses for authentication against the Kafka brokers.

SASL Password

The SASL password AIStor uses for authentication against the Kafka brokers.

SASL Mechanism

The SASL mechanism AIStor uses for authentication against the Kafka brokers. Defaults to plain.

TLS Client Auth

Set to “on” to direct AIStor to use mTLS to authenticate against the Kafka brokers.

Client TLS Cert

The path to the TLS client certificate to use for mTLS authentication.

Client TLS Key

The path to the TLS client private key to use for mTLS authentication.

Version

The version of the Kafka broker AIStor expects at the specified endpoints.

Comment

A comment to associate with the configuration.

Queue Dir

Specify the directory path to enable MinIO’s persistent event store for undelivered messages, such as /opt/minio/events.

Queue Size

Specify the maximum limit for undelivered messages. Defaults to 100000.

All rights reserved 2024-Present, MinIO, Inc.