SSH Event Streaming

Events in an audit log must be ordered

SSH Event Streaming allows Enterprise API users to stream events as they occur over ssh using an Enterprise API Token.

Usage

To use the SSH event streaming feature, you’ll need to start by getting an Enterprise API token.

To open a stream for your sandbox, connect to tail.auditlog.replicated.com using your Enterprise API token as the username:

ssh [email protected]

Once the connection is open, CSV events will begin to stream through stdout, and can be piped to a file or other event ingest system.

The same token can be used for multiple concurrent streaming sessions, all sessions will receive every event that occurs while they are active.

Parameters

The streaming APIs support a few parameters that can control the format of events. The default output format is CSV, but JSON is also supported via the format parameter

ssh [email protected]d.com