SUDO Logs - JSON version

Monitor SUDO Logs with JSON Logging

SUDO Logs - JSON version screenshot 1
SUDO Logs - JSON version screenshot 2
SUDO Logs - JSON version screenshot 3

Linux SUDO Logs

Visualize Linux SUDO accepted/rejected events using promtail and loki.

How to use this dashboard with explanation in blog: https://voidquark.com/blog/parsing-sudo-logs-with-grafana-loki ( SUDO JSON Logging configuration, Query explained, Alertmanager rule ).

Rev1 Tested on RHEL9.2

Rev2 Tested on RHEL9.3+

Source Code

GitHub repo link: https://github.com/voidquark/grafana-dashboards

Author

Created by VoidQuark

Revisions
RevisionDescriptionCreated
Google Cloud logs

Google Cloud logs

by Grafana Labs
Grafana Labs solution

Easily monitor Google Cloud logs with Grafana Cloud's out-of-the-box monitoring solution.

Learn more

Get this dashboard

Import the dashboard template

or

Download JSON

Datasource
Dependencies