检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Configuring Database Audit Instance Rules You can configure audit rules to detect database risks. To get notified of risks, you also need to Configuring Alarm Notifications.
Figure 1 RDS for PostgreSQL audit logs Table 1 Audit log field description Field Description AUDIT: Fixed prefix, which identifies an audit record. AUDIT_TYPE Audit type. The value can be SESSION, OBJECT, or CLIENT_AUTHENTICATION.
Audit Log Upload Policy Description Scenario On the RDS console, audit logs are normally uploaded to OBS and a log file is generated every half an hour or for every 100 MB.
Audit Log Upload Policy Description Scenario On the RDS console, audit logs are normally uploaded to OBS and a log file is generated every half an hour or for every 100 MB.
Audit Log Collection Is Enabled Rule Details Table 1 Rule details Parameter Description Rule Name gaussdb-instance-enable-auditLog Identifier gaussdb-instance-enable-auditLog Description If the audit log is not enabled for a GaussDB instance, this instance is noncompliant.
In the navigation pane on the left, choose Audit Logs. On the Audit Logs page, locate a target log file and click Delete in the Operation column. Click Yes. Parent topic: Audit Logs
Statement Audit Database Audit Rules
SQL Audit SQL audit helps users detect SQL standardization, design rationality, and performance issues hidden in code at the development phase. More than 300 audit rules are preset for various SQL statements such as DML, DDL, and PL/SQL.
Downloading SQL Audit Logs If you enable SQL audit, all SQL operations will be logged, and you can download audit logs to view details. The minimum time unit of audit logs is second. By default, SQL audit is disabled. Enabling this function may affect database performance.
Parent topic: Audit Logs
Container Audit Container Audit Overview Viewing Container Audit Logs Parent Topic: Security Operations
Logs and Audit Enabling or Disabling Log Reporting Viewing and Exporting Slow Query Logs Viewing Audit Logs CTS Audit Parent Topic: Working with GeminiDB Redis API
Enabling SQL Audit (OBT) After you enable the SQL audit function, all SQL operations will be recorded in log files. You can download audit logs to view details. By default, SQL audit is disabled because enabling this function may affect database performance.
Using CTS to Audit VPC Endpoints Key Operations Recorded by CTS Viewing Traces
Querying Audit Logs about a Repository or File Function Query audit logs about a repository or file.
Quotas and Audit Quotas Auditing Operation Records
Monitoring and Audit Cloud Eye Monitoring CTS Auditing
Log Audit Protection Log Overview Querying Logs Log Management
Logs and Audit Viewing and Exporting Slow Query Logs CTS Parent Topic: Working with GeminiDB DynamoDB-Compatible API
Logs and Audit Viewing and Exporting Slow Query Logs CTS Parent Topic: Working with GeminiDB Cassandra API