BlackFriday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Linux Foundation Exam CKS Topic 1 Question 48 Discussion

Actual exam question for Linux Foundation's CKS exam
Question #: 48
Topic #: 1
[All CKS Questions]

Enable audit logs in the cluster, To Do so, enable the log backend, and ensure that

1. logs are stored at /var/log/kubernetes/kubernetes-logs.txt.

2. Log files are retained for 5 days.

3. at maximum, a number of 10 old audit logs files are retained.

Edit and extend the basic policy to log:

1. Cronjobs changes at RequestResponse

2. Log the request body of deployments changes in the namespace kube-system.

3. Log all other resources in core and extensions at the Request level.

4. Don't log watch requests by the "system:kube-proxy" on endpoints or

Show Suggested Answer Hide Answer
Suggested Answer: A

by Elli at Feb 09, 2024, 01:18 AM

Limited Time Offer

25%

Off

Get Premium CKS Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Sheldon
4 months ago
I agree, it helps in understanding changes made to critical resources.
upvoted 0 times
...
Tammy
4 months ago
Logging request body of deployments in kube-system namespace provides valuable information.
upvoted 0 times
...
Marylyn
4 months ago
Yes, it allows for historical analysis and investigation if needed.
upvoted 0 times
...
Sheldon
4 months ago
I believe ensuring that log files are retained for 5 days is a good practice.
upvoted 0 times
...
Tammy
5 months ago
I agree with you, Marylyn. It helps in tracking changes and potential issues.
upvoted 0 times
...
Marylyn
5 months ago
I think enabling audit logs in the cluster is important for security.
upvoted 0 times
...
Martha
5 months ago
I see the rationale behind each requirement now. It's all about enhancing security and monitoring in the cluster.
upvoted 0 times
...
Vicki
5 months ago
Exactly. And we should not forget to extend the basic policy to log specific changes, like Cronjobs and deployments.
upvoted 0 times
...
Karl
6 months ago
We also need to be careful about the old audit logs files limit. Keeping it to a maximum of 10 is important.
upvoted 0 times
...
Martha
6 months ago
I agree. We have to pay attention to the specifics like storing logs at /var/log/kubernetes/kubernetes-logs.txt and retaining them for 5 days.
upvoted 0 times
...
Vicki
6 months ago
I think enabling audit logs is crucial for security reasons. We need to make sure we capture the right information.
upvoted 0 times
...
Karl
6 months ago
This question is tricky. I need to focus on each requirement.
upvoted 0 times
...

Save Cancel