MKE provides three levels of audit logging to administrators:
Audit logging is disabled.
Includes all fields from the Metadata level, as well as the request payload.
Once you enable MKE audit logging, the audit logs will collect within the
container logs of the
ucp-controller container on each MKE manager node.
Be sure to configure a logging driver with log rotation set, as audit logging can generate a large amount of data.