Code Review / apex-tripleo-heat-templates.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 07f686d)
Enable keystone cadf notifications
authorYolanda Robla <yroblamo@redhat.com>
Mon, 6 Mar 2017 17:09:19 +0000 (18:09 +0100)
committerYolanda Robla <yroblamo@redhat.com>
Mon, 6 Mar 2017 17:10:55 +0000 (18:10 +0100)
It will allow to configure keystone event notifications
using CADF, as documented on:
https://docs.openstack.org/developer/keystone/event_notifications.html

CADF events provide auditing capabilities for compliance with
security.

Change-Id: Id16b264c295b9e3adbf960366ff8328ba8dcd485

capabilities-map.yaml patch | blob | history
environments/cadf.yaml [new file with mode: 0644] patch | blob

diff --git a/capabilities-map.yaml b/capabilities-map.yaml
index 26ed7f2..66dc1d1 100644 (file)
--- a/capabilities-map.yaml
+++ b/capabilities-map.yaml
@@ -582,3 +582,8 @@ topics:
             description:
             requires:
               - overcloud-resource-registry-puppet.yaml
+      - title: Keystone CADF auditing
+        description: Enable CADF notifications in Keystone for auditing
+        environments:
+          - file: environments/cadf.yaml
+            title: Keystone CADF auditing
diff --git a/environments/cadf.yaml b/environments/cadf.yaml
new file mode 100644 (file)
index 0000000..af5c7fd
--- /dev/null
+++ b/environments/cadf.yaml
@@ -0,0 +1,2 @@
+parameter_defaults:
+  KeystoneNotificationFormat: cadf