SUDO Logs - JSON version
Monitor SUDO Logs with JSON Logging
Linux SUDO Logs
Visualize Linux SUDO accepted/rejected events using promtail and loki.
How to use this dashboard with explanation in blog: https://voidquark.com/blog/parsing-sudo-logs-with-grafana-loki ( SUDO JSON Logging configuration, Query explained, Alertmanager rule ).
Rev1 Tested on RHEL9.2
Rev2 Tested on RHEL9.3+
Source Code
GitHub repo link: https://github.com/voidquark/grafana-dashboards
Author
Created by VoidQuark
Data source config
Collector type:
Collector plugins:
Collector config:
Dashboard revisions
Upload an updated version of an exported dashboard.json file from Grafana
| Revision | Decscription | Created | |
|---|---|---|---|
| Download |
Sign up for Grafana Cloud
Get up and running in minutes with the Grafana Cloud free tier, which includes free forever 10k metrics, 50GB logs, 50GB traces, 500 VUh, and more.
Get this dashboard
Data source:
Dependencies: