检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Database Audit Is Running Properly But Generates No Audit Records Symptom The functions of the database audit instance are normal. When there is database traffic, audit information about the executed SQL statement cannot be found in the SQL statement list.
Audit and Logging Monitoring is key to ensuring the reliability, availability, and performance of CFW. You can summarize operation logs of Huawei Cloud services for analysis, audit, resource monitoring, and fault locating. CFW interworks with Cloud Trace Service (CTS).
For details about the Audit page, see Audit Overview. The audit logs of FusionInsight Manager are stored in the database by default. If the audit logs are retained for a long time, the disk space of the data directory may become insufficient.
Audit Logs Key Operations Recorded by CTS Viewing Audit Logs
Audit and Logs Audit Cloud Trace Service (CTS) CTS records operations on the cloud resources in your account. You can use the logs generated by CTS to perform security analysis, track resource changes, audit compliance, and locate faults.
Audit and Logs Audit Cloud Trace Service (CTS) is a professional log audit service in Huawei Cloud security solutions.
Audit Live Session History Session System Log Operation Report System Report
Checking Audit Results Check to ensure the communication between the agent and the database audit instance is normal. Then you can use the database audit function and check audit results.
Viewing Audit Reports By default, database audit complies with a full audit rule, which is used to audit all databases that are connected to the database audit instance.
CTS Auditing HSS Operations Supported by CTS Cloud Trace Service (CTS) records all operations on HSS, including requests initiated from the management console or open APIs and responses to the requests, for tenants to query, audit, and trace.
In the History area, view the historical records, including the database type, data source, SQL statement, and audit time. Only the latest 10 records are displayed. Figure 1 Viewing text audit history Click View Details.
Viewing the Audit Dashboard After connecting the database to the database audit instance, view the audit statistics, including the database audit information, instance information, and data analysis information.
Adding Audit Scope By default, database audit complies with a full audit rule, which is used to audit all databases that are connected to the database audit instance. You can also add audit scope and specify the databases to be audited.
Container Audit Overview What Is Container Audit?
Deleting All Audit Records Scenarios You can delete all audit records at a time. Deleted records cannot be restored. Exercise caution when performing this operation. Prerequisites A text has been submitted for audit. Procedure Log in to the UGO console.
Querying Audit Task Details Scenarios You can view details about a database audit task. Prerequisites A database audit task has been created Procedure Log in to the UGO console. In the navigation pane on the left, choose SQL Audit > Database Audit.
On the Raw Logs tab, view the audit logs generated in the relative time period. Figure 3 Audit logs Parent Topic: Logs and Audit
Perform the following operations to view different types of audit logs: Figure 1 Viewing container audit logs Viewing cluster container audit logs Click the Cluster Containers tab. Click the name of a cluster.
Querying Audit Logs Anti-DDoS Operations That Can Be Recorded by CTS Viewing Logs on CTS Parent Topic: CNAD Basic (Anti-DDoS) User Guide
Deleting a File Audit Task Scenarios You can delete file audit tasks. Deleted audit tasks cannot be restored. Exercise caution when performing this operation. Prerequisites A file has been uploaded. Procedure Log in to the UGO console.
Deleting an Audit Task Scenarios You can delete an audit task. Deleted tasks cannot be restored. Exercise caution when performing this operation. Prerequisites An audit task has been created. Procedure Log in to the UGO console.
Does Database Audit Support Bidirectional Audit? Yes. In bidirectional audit, both requests and responses to the database are audited. Bidirectional audit is used for database audit by default. Parent topic: Functions
Creating an Audit Task Creating a Text Audit Task Creating a File Audit Task Creating a Database Audit Task Parent topic: SQL Audit
