Obmondo logo
  • Why Obmondo
  • Scope of Service
  • Compliance
  • Pricing
  • Features
LoginSignup
Close
  • Why Obmondo
  • Scope of Service
  • Compliance
  • Pricing
  • Features
  • GitHub
LoginSignup
    • Overview
    • 8.1 User Endpoint Devices
    • 8.2 Privileged Access Rights
    • 8.3 Information Access Restriction
    • 8.4 Access to Source Code
    • 8.5 Secure Authentication
    • 8.6 Capacity Management
    • 8.7 Protection Against Malware
    • 8.8 Management of Technical Vulnerabilities
    • 8.9 Configuration Management
    • 8.10 Information Deletion
    • 8.11 Data masking
    • 8.12 Data leakage prevention
    • 8.13 Information backup
    • 8.14 Redundancy of information processing facilities
    • 8.15 Logging
    • 8.16 Monitoring activities
    • 8.17 Clock synchronization
    • 8.18 Use of privileged utility programs
    • 8.19 Installation of software on operational systems
    • 8.20 Networks security
    • 8.21 Security of Network Services
    • 8.22 Segregation of Networks
    • 8.23 Web filtering
    • 8.24 Use of Cryptography
    • 8.25 Secure Development Life Cycle
    • 8.26 Application Security Requirements
    • 8.27 Secure System Architecture & Engineering Principles
    • 8.28 Secure Coding
    • 8.29 Security Testing in Development and Acceptance
    • 8.30 Outsourced Development
    • 8.31 Separation of Development, Test, and Production Environments
    • 8.32 Change Management
    • 8.33 Test Information Security
    • 8.34 Protection of Information Systems During Audit Testing
      • Overview
      • 8.1 User Endpoint Devices
      • 8.2 Privileged Access Rights
      • 8.3 Information Access Restriction
      • 8.4 Access to Source Code
      • 8.5 Secure Authentication
      • 8.6 Capacity Management
      • 8.7 Protection Against Malware
      • 8.8 Management of Technical Vulnerabilities
      • 8.9 Configuration Management
      • 8.10 Information Deletion
      • 8.11 Data masking
      • 8.12 Data leakage prevention
      • 8.13 Information backup
      • 8.14 Redundancy of information processing facilities
      • 8.15 Logging
      • 8.16 Monitoring activities
      • 8.17 Clock synchronization
      • 8.18 Use of privileged utility programs
      • 8.19 Installation of software on operational systems
      • 8.20 Networks security
      • 8.21 Security of Network Services
      • 8.22 Segregation of Networks
      • 8.23 Web filtering
      • 8.24 Use of Cryptography
      • 8.25 Secure Development Life Cycle
      • 8.26 Application Security Requirements
      • 8.27 Secure System Architecture & Engineering Principles
      • 8.28 Secure Coding
      • 8.29 Security Testing in Development and Acceptance
      • 8.30 Outsourced Development
      • 8.31 Separation of Development, Test, and Production Environments
      • 8.32 Change Management
      • 8.33 Test Information Security
      • 8.34 Protection of Information Systems During Audit Testing
      Obmondo

      Open-source platform for security, compliance, and operations — run on any cloud with no vendor lock-in.

      Products

      • Services
      • Features
      • Pricing
      • Compliance
      • Scope of Service

      Company

      • About
      • Solutions Brief
      • Careers
      • Blog
      • Why Obmondo

      Contact

      • info@obmondo.com
      • sales@obmondo.com
      • Talk to us
      • Contact Us

      © 2026 Obmondo. All rights reserved.

      Terms & ConditionsUnsubscribe
      1. compliance
      2. 8.15

      Logging

      Logs that record activities, exceptions, faults and other relevant events shall be produced, stored, protected and analyzed

      Centralized Logging Pipeline

      KubeAid provides a unified logging stack using Fluent Bit, Graylog and Loki, ensuring all application, cluster, and infrastructure logs are aggregated and searchable in one place.

      Rich, Security-Relevant Audit Logs

      The logging stack provided via kubeaid has Kubernetes API audit logs, Keycloak authentication logs, Netbird VPN logs,argocd logs and admin activity logs — supporting compliance, and incident investigations.

      Secure, Immutable Log Storage

      Logs are sent to write-once storage to prevent modification or deletion. Access is strictly controlled with RBAC and IAM to ensure only authorized personnel can view or export logs.

      Real-Time Alerting & Monitoring

      Log-based alerts detect anomalies such as failed logins, service crashes. Alerts flow through Prometheus Alertmanager into mattermost channel where we get notified about the alerts/incidents via our in-house alert processor and dispatcher tool opsmondo..

      Comprehensive Log Coverage

      • The logging stack managed via kubeaid collects logs from all critical components, including:
      • - Web services & APIs (request traces, errors, debug logs)
      • - Authentication systems like Keycloak
      • - Cluster networking through Netbird connection logs
      • - Application analytics platforms such as Matomo
      • This ensures full traceability across the environment.

      On this page

      • Centralized Logging Pipeline
      • Rich, Security-Relevant Audit Logs
      • Secure, Immutable Log Storage
      • Real-Time Alerting Monitoring
      • Comprehensive Log Coverage