[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-03 UTC."],[[["\u003cp\u003eThis content focuses on audit logs for CRUD operations performed on the DHCP configuration within root-only workloads.\u003c/p\u003e\n"],["\u003cp\u003eAudit log entries contain information such as the user or service identity, the target of the action, the action performed, the event timestamp, the source of the action, and the outcome.\u003c/p\u003e\n"],["\u003cp\u003eThe Kubernetes audit logs are the source of audit information for these operations and include fields like \u003ccode\u003euserAgent\u003c/code\u003e, \u003ccode\u003euser_name\u003c/code\u003e, \u003ccode\u003erequestURI\u003c/code\u003e, \u003ccode\u003everb\u003c/code\u003e, \u003ccode\u003erequestReceivedTimestamp\u003c/code\u003e, \u003ccode\u003e_gdch_service_name\u003c/code\u003e, and \u003ccode\u003ecode\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eAn example log is provided, showing a complete entry with all the fields and their corresponding values to illustrate the structure of the audit data.\u003c/p\u003e\n"]]],[],null,["# Dynamic Host Configuration Protocol (DHCP)\n\nCRUD operations to the DHCP config\n----------------------------------\n\nThe CRUD operations include data changes to the DHCP config logged in the audit\nlog server.\n\n**Example log** \n\n {\n \"_gdch_cluster\": \"root-admin\",\n \"_gdch_fluentbit_pod\": \"anthos-audit-logs-forwarder-2z87b\",\n \"_gdch_service_name\": \"apiserver\",\n \"annotations\": {\n \"authorization_k8s_io_decision\": \"allow\",\n \"authorization_k8s_io_reason\": \"\"\n },\n \"apiGroup\": \"UNKNOWN\",\n \"apiVersion\": \"audit.k8s.io/v1\",\n \"auditID\": \"8841cec6-1557-4278-8ba2-1f89b7953a81\",\n \"cluster\": \"root-admin\",\n \"auditID\": \"069120c2-c182-4e8f-b863-9c640885bf2b\",\n \"fluentbit_pod\": \"anthos-audit-logs-forwarder-2z87b\",\n \"kind\": \"Event\",\n \"level\": \"Metadata\",\n \"objectRef\": {\n \"apiGroup\": \"UNKNOWN\",\n \"apiVersion\": \"v1\",\n \"name\": \"gpc-dhcp-conf\",\n \"namespace\": \"gpc-system\",\n \"resource\": \"configmaps\"\n },\n \"requestReceivedTimestamp\": \"2022-12-13T06:59:55.681994Z\",\n \"requestURI\": \"/api/v1/namespaces/gpc-system/configmaps/gpc-dhcp-conf?fieldManager=kubectl-edit\",\n \"responseStatus\": {\n \"code\": 200\n },\n \"service_name\": \"apiserver\",\n \"stage\": \"ResponseComplete\",\n \"stageTimestamp\": \"2022-12-13T06:59:55.699551Z\",\n \"userAgent\": \"kubectl/v1.23.5 (linux/amd64) kubernetes/c285e78\",\n \"user\": {\n \"username\": \"kubernetes-admin\"\n },\n \"verb\": \"patch\",\n \"Detected\": \"fields\",\n \"Time\": \"1670915285440\",\n \"tsNs\": \"1670915285440328017\"\n }"]]
