Skip to content

Pkafka#

This topic allows you to enable Pkafka for real-time audits in Privacera Discovery.

Prerequisites

Ensure the following prerequisites are met:

  • Create an Event Hub namespace with a region similar to the region of a Storage Account you want to monitor. For more information, refer to Microsoft's documentation Create an Event Hubs namespace.

  • Create Event Hub in the Event Hub namespace. For more information, refer to Microsoft's documentation Create an event hub.

  • Create a consumer group in the Event Hub.

    Azure Portal > Event Hubs namespace > Event Hub > Consumer Groups > +Consumer Group. The Consumer Groups tab will be under Entities of the Event Hub page.

  • Get the connection string of the Event Hubs namespace. For more information, refer to Microsoft's documentation Get connection string from the portal.

  • Create an Event Subscription for the Event Hubs namespace with the Event Type as Blob Created and Blob Deleted. For more information, refer to Microsoft's documentation Create an Event Grid subscription.

    Note

    When you create an event grid subscription, clear the checkbox Enable subject filtering.

Configuration

  1. SSH to the Privacera Host VM.

  2. Run the following commands.

    cd ~/privacera/privacera-manager
cp config/sample-vars/vars.pkafka.azure.yml config/custom-vars/
vi config/custom-vars/vars.pkafka.azure.yml

  3. Edit the following properties. For property details and description, click here.

    PKAFKA_EVENT_HUB: "<PLEASE_CHANGE>"
PKAFKA_EVENT_HUB_NAMESPACE: "<PLEASE_CHANGE>"
PKAFKA_EVENT_HUB_CONSUMER_GROUP: "<PLEASE_CHANGE>"
PKAFKA_EVENT_HUB_CONNECTION_STRING: "<PLEASE_CHANGE>"
DISCOVERY_REALTIME_ENABLE: "true"

  4. Run the following commands.

    cd ~/privacera/privacera-manager
./privacera-manager.sh update