Firstly , make sure the PR has been landed in latest payload, $ oc adm release info --commits registry.ci.openshift.org/ocp/release:4.8.0-0.nightly-2021-06-06-164529 | grep kube-apiserver-operator cluster-kube-apiserver-operator https://github.com/openshift/cluster-kube-apiserver-operator a84657ee3c20a1c3af9ea1c7d6798b35fdc5be4f $ git log --pretty="%h %an %cd - %s" a84657ee | grep '#1089 ' 23103684 OpenShift Merge Robot Tue May 11 20:08:52 2021 -0400 - Merge pull request #1089 from EmilyM1/remove-audit-pkg-use-libgo Then, change the audit profiles of apiserver to make sure the feature works fine. $ oc get clusterversion NAME VERSION AVAILABLE PROGRESSING SINCE STATUS version 4.8.0-0.nightly-2021-06-06-164529 True False 150m Cluster version is 4.8.0-0.nightly-2021-06-06-164529 $ oc patch apiserver cluster -p '{"spec": {"audit": {"profile": "WriteRequestBodies"}}}' --type merge apiserver.config.openshift.io/cluster patched $ oc get apiserver/cluster -ojson | jq .spec.audit { "profile": "WriteRequestBodies" } $ oc patch apiserver cluster -p '{"spec": {"audit": {"profile": "AllRequestBodies"}}}' --type merge apiserver.config.openshift.io/cluster patched $ oc get apiserver/cluster -ojson | jq .spec.audit { "profile": "AllRequestBodies" } $ oc patch apiserver cluster -p '{"spec": {"audit": {"profile": "Default"}}}' --type merge apiserver.config.openshift.io/cluster patched $ oc get apiserver/cluster -ojson | jq .spec.audit { "profile": "Default" } After every profile applied, checked the audit log, the results as expected, so move the bug VERIFIED.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Moderate: OpenShift Container Platform 4.8.2 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2021:2438