Use these audit export configuration commands to manage exporting your audit logs to S3 and ADLS Gen2. To configure an audit export see the Export to S3 or Export to ADLS guides.
To disable a configuration, use the disableExportConfiguration mutation:
To enable a disabled configuration, use the enableExportConfiguration mutation:
To delete a configuration, use the deleteExportConfiguration mutation:
To update an existing configuration, use the mutation for your specific export configuration:
: updateS3AccessKeyExportConfiguration
: updateS3AssumedRoleExportConfiguration
: updateAdlsSasTokenExportConfiguration
Update the configuration to make small changes, i.e., to rotate the token, rather than deleting the existing one and creating a new one.
mutation {
disableExportConfiguration(
id: "<export configuration ID>"
)
{
id
}
}"data": {
"disableExportConfiguration": {
"id": "<export configuration ID>"
}
}mutation {
enableExportConfiguration(
id: "<export configuration ID>"
)
{
id
}
}"data": {
"enableExportConfiguration": {
"id": "<export configuration ID>"
}
}mutation {
deleteExportConfiguration(
id: "<export configuration ID>"
)
{
id
}
}"data": {
"deleteExportConfiguration": {
"id": "<export configuration ID>"
}
}mutation {
updateAdlsSasTokenExportConfiguration(
data: {
id: "<export configuration ID>"
interval: EVERY_2_HOURS
storageAccount: "your-adls-storage-account",
fileSystem: "audit-output",
path: "immuta-audit",
sasToken: "your-sas-token"
}
)
{
id
interval
enabled
endpointConfiguration {
__typename
... on AdlsSasTokenEndpointConfiguration {
storageAccount
path
fileSystem
}
}
}
}{
"data": {
"updateAdlsSasTokenExportConfiguration": {
"id": "<export configuration ID>",
"interval": "EVERY_12_HOURS",
"enabled": true,
"endpointConfiguration": {
"storageAccount": "your-adls-storage-account",
"fileSystem": "audit-output",
"path": "immuta-audit"
}
}
}
}