Monitoring Container Engine for Kubernetes and the Kubernetes API Server

It's often useful to understand the context behind activities happening in a cluster. For example, to perform compliance checks, to identify security anomalies, and to troubleshoot errors by identifying who did what and when.

You can monitor operations performed by Container Engine for Kubernetes and the Kubernetes API server as follows:

  • You can use the Work Requests tab of the cluster's Summary page to monitor and manage operations performed on a particular cluster by Container Engine for Kubernetes.
  • You can use the Oracle Cloud Infrastructure Audit service to view all operations performed by:

    • Container Engine for Kubernetes, which emits audit events whenever you perform actions on a cluster, such as create and delete.
    • The Kubernetes API server, which emits audit events whenever you use tools like kubectl to make administrative changes to a cluster, such as creating a service. Note that Kubernetes API server events are only shown for clusters created after 15 July, 2020.

    The Oracle Cloud Infrastructure Audit service retains audit logs for a specified time (see Setting Audit Log Retention Period).

Note that in addition to monitoring operations as described in this topic, you can also monitor the health, capacity, and performance of Kubernetes clusters themselves using metrics , alarms , and notifications. See Container Engine for Kubernetes Metrics.

Using the Console

To monitor and manage operations performed by Container Engine for Kubernetes on a particular cluster:

  1. In the Console, open the navigation menu. Under Solutions and Platform, go to Developer Services and click Container Clusters.
  2. Choose a Compartment you have permission to work in.
  3. On the Cluster List page, click the name of the cluster for which you want to monitor and manage operations.

    The Cluster page shows information about the cluster.

  4. Display the Work Requests tab, showing the recent operations performed on the cluster.

To view operations performed by Container Engine for Kubernetes and the Kubernetes API server as log events in the Oracle Cloud Infrastructure Audit service:

  1. In the Console, open the navigation menu. Under Governance and Administration, go to Governance and click Audit.
  2. Choose a Compartment you have permission to work in.
  3. Search and filter to show the operations you're interested in:

    • To view operations performed by Container Engine for Kubernetes, enter ClustersAPI in the Keywords field and click Search.
    • To view operations performed by the Kubernetes API server, enter OKE API Server Admin Access in the Keywords field and click Search.

    For more information about using the Oracle Cloud Infrastructure Audit service, see Viewing Audit Log Events.