1. Proposed title of this feature request
Central Logging of user activity for Open Stack resources.
3. What is the nature and description of the request?
Currently when a user executes a command either by Horizon UI or via REST API very few actions are logged properly against the user. Even the logging of the start/stop is only done by libvirt on the hypervisor.
While you can pull up activity via "nova instance-action-list" and this is very helpful from a forensics point of view.
For detailed auditing and monitoring of actions interactive executing commands will not be used, but instead, log files stream sent to a central monitoring/logging/audit faqcility. The primary issue is security analytics is done using LOG data and very little of OS user activity is properly and accurately logged to the various log files.
We deliver support for centralized logging with OSP 11. If individual services are not logging necessary metadata (such as the user that initiated a request), that should probably be handled as an RFE against the individual service.