Audit Trail Events
Note
The Streaming API encoded message must be first decoded using CloudEvents proto file before decoding using the event specific proto file below
Audit Trail events provide real-time visibility into configuration and operational changes across the system.
Endpoint
Connect to the following WebSocket endpoint to receive Audit Trail events:
wss://<host>/network-services/v1alpha1/audit-trail-events
Ensure that you replace host value with your Central Base URL. Please check out our Getting Started guide for more information.
Proto File
Event messages published by Central are encoded using Google Protocol Buffers and sent over the WebSocket connection in serialized form.
To deserialize these messages, clients must use the following .proto file, which defines the schema used by Central when encoding the Audit Trail Events payloads.
syntax = "proto3";
package network_services.audit_trail.v1alpha1;
import "google/protobuf/struct.proto";
message AuditTrail {
string tenant_id = 1;
int64 occurred_on = 2; // epoch millis
string action = 3;
string category = 4;
string sub_category = 5;
string destination = 6;
string destination_name = 7;
ScopeInfo scope_info = 8;
string ip_address = 9;
string description = 10;
string source = 11;
string service_name = 12;
LogDetails log_details = 13;
string additional_info = 14;
}
message ScopeInfo {
string scope_type = 1;
repeated string scope_ids = 2;
}
message LogDetails {
repeated ChangedField changed_fields = 1;
repeated ImpactRadius impact_radius = 2;
ChangedJSON changed_json = 3;
}
message ChangedField {
string field_label_key = 1;
repeated string before_transaction = 2;
repeated string after_transaction = 3;
}
message ImpactRadius {
string context = 1;
repeated string values = 2;
}
message ChangedJSON {
google.protobuf.Struct before_transaction = 1;
google.protobuf.Struct after_transaction = 2;
}
Supported Event Types
Audit Trail supports multiple event types. These values can be used when filtering events at subscription time.
| Title | Event Types |
|---|---|
| Device Monitoring | com.hpe.greenlake.network-services.v1alpha1.audit-trail.device-monitoring |
| Configuration | com.hpe.greenlake.network-services.v1alpha1.audit-trail.configuration |
| Certificate Management | com.hpe.greenlake.network-services.v1alpha1.audit-trail.certificate-management |
| Alert Management | com.hpe.greenlake.network-services.v1alpha1.audit-trail.alert-management |
| System Management | com.hpe.greenlake.network-services.v1alpha1.audit-trail.system-management |
| Central NAC | com.hpe.greenlake.network-services.v1alpha1.audit-trail.central-nac |
| Overlay Tunnel Orchestrator | com.hpe.greenlake.network-services.v1alpha1.audit-trail.overlay-tunnel-orchestrator |
| Reporting | com.hpe.greenlake.network-services.v1alpha1.audit-trail.reporting |
| Firmware Management | com.hpe.greenlake.network-services.v1alpha1.audit-trail.firmware-management |
| Security | com.hpe.greenlake.network-services.v1alpha1.audit-trail.security |
| GCIS | com.hpe.greenlake.network-services.v1alpha1.audit-trail.gcis |
| Troubleshooting | com.hpe.greenlake.network-services.v1alpha1.audit-trail.troubleshooting |
| Subscription | com.hpe.greenlake.network-services.v1alpha1.audit-trail.subscription |
| Floorplan Manager | com.hpe.greenlake.network-services.v1alpha1.audit-trail.floorplan-manager |
| Configuration Validation | com.hpe.greenlake.network-services.v1alpha1.audit-trail.configuration-validation |
| Extension | com.hpe.greenlake.network-services.v1alpha1.audit-trail.extension |
| Service Config Bridge | com.hpe.greenlake.network-services.v1alpha1.audit-trail.service-config-bridge |
| Configuration Distribution | com.hpe.greenlake.network-services.v1alpha1.audit-trail.configuration-distribution |
| Configuration Import | com.hpe.greenlake.network-services.v1alpha1.audit-trail.configuration-import |
| Configuration Health | com.hpe.greenlake.network-services.v1alpha1.audit-trail.configuration-health |
Updated 6 days ago