Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

back

CipherTrust Manager Administration

CipherTrust Manager System Monitoring

search

Please Note:

CipherTrust Manager System Monitoring

CipherTrust Manager has six mechanisms to monitor its system activity.

  • Server audit and client audit records include general auditable events available in the GUI, CLI, and REST API in a user-readable JSON format, which can be used to create alarms. By default, these are stored using a Loki Grafana microservice, as we recommend. Storage on local database instead of Loki Grafana is available, but deprecated.

    Consult documentation for a specific CipherTrust connector for information on configuring and interpreting client records.

  • Host logs are very detailed messages at the base operating system level.

  • Debug logs are detailed downloadable LTSV files intended for troubleshooting CipherTrust Manager operations with Thales customer support. These include host logs as well as other logs.

  • KMIP and NAE activity logs are downloadable JSON format files that include information on operations performed through the KMIP and NAE interfaces.

  • Web activity logs are downloadable JSON format files that include information on operations performed through the web interface.

  • Prometheus Metrics Endpoint allows the Prometheus monitoring system to scrape the CipherTrust Manager continuously, providing metrics over time to help monitor overall system health, performance, and cryptographic activity. As well, there is a sample configuration available on request, including Prometheus and Grafana data visualization application Docker containers.

The system records and logs can be exported to various external locations.