Merge pull request #30712 from funkypenguin/issue30661

Fix auditing example to permit log rotation
kubernetes · Dec 6, 2021 · d6865d1 · d6865d1
2 parents b904695 + 4f96e39
commit d6865d1
Showing 1 changed file with 4 additions and 4 deletions.
diff --git a/content/en/docs/tasks/debug-application-cluster/audit.md b/content/en/docs/tasks/debug-application-cluster/audit.md
@@ -147,7 +147,7 @@ If your cluster's control plane runs the kube-apiserver as a Pod, remember to mo
 to the location of the policy file and log file, so that audit records are persisted. For example:
 ```shell
     --audit-policy-file=/etc/kubernetes/audit-policy.yaml \
-    --audit-log-path=/var/log/audit.log
+    --audit-log-path=/var/log/kubernetes/audit/audit.log
 ```
 then mount the volumes:
 
@@ -157,7 +157,7 @@ volumeMounts:
   - mountPath: /etc/kubernetes/audit-policy.yaml
     name: audit
     readOnly: true
-  - mountPath: /var/log/audit.log
+  - mountPath: /var/log/kubernetes/audit/
     name: audit-log
     readOnly: false
 ```
@@ -172,8 +172,8 @@ and finally configure the `hostPath`:
 
 - name: audit-log
   hostPath:
-    path: /var/log/audit.log
-    type: FileOrCreate
+    path: /var/log/kubernetes/audit/
+    type: DirectoryOrCreate
 
 ```