检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Configuring Database Audit Instance Rules You can configure audit rules to detect database risks. To get notified of risks, you also need to Configuring Alarm Notifications.
Audit Log Upload Policy Description Scenario On the RDS console, audit logs are normally uploaded to OBS and a log file is generated every half an hour or for every 100 MB.
Audit Log Upload Policy Description Scenario On the RDS console, audit logs are normally uploaded to OBS and a log file is generated every half an hour or for every 100 MB.
Querying Audit Logs Anti-DDoS Operations That Can Be Recorded by CTS Viewing Logs on CTS Parent Topic: CNAD Basic (Anti-DDoS) User Guide
Querying Audit Logs CNAD Advanced Operations That Can Be Recorded by CTS Viewing CTS Traces Parent Topic: CNAD Advanced (CNAD) Operation Guide
In the navigation pane on the left, choose Audit Logs. On the Audit Logs page, locate a target log file and click Delete in the Operation column. Click Yes. Parent topic: Audit Logs
Audit Log Collection Is Enabled Rule Details Table 1 Rule details Parameter Description Rule Name gaussdb-instance-enable-auditLog Identifier gaussdb-instance-enable-auditLog Description If the audit log is not enabled for a GaussDB instance, this instance is noncompliant.
Figure 1 RDS for PostgreSQL audit logs Table 1 Audit log field description Field Description AUDIT: Fixed prefix, which identifies an audit record. AUDIT_TYPE Audit type. The value can be SESSION, OBJECT, or CLIENT_AUTHENTICATION.
Statement Audit Database Audit Rules
SQL Audit SQL audit helps users detect SQL standardization, design rationality, and performance issues hidden in code at the development phase. More than 300 audit rules are preset for various SQL statements such as DML, DDL, and PL/SQL.
Downloading SQL Audit Logs If you enable SQL audit, all SQL operations will be logged, and you can download audit logs to view details. The minimum time unit of audit logs is second. By default, SQL audit is disabled. Enabling this function may affect database performance.
Container Audit Container Audit Overview Viewing Container Audit Logs Parent Topic: Security Operations
Parent topic: Audit Logs
Logs and Audit Enabling or Disabling Log Reporting Viewing and Exporting Slow Query Logs Viewing Audit Logs CTS Audit Parent Topic: Working with GeminiDB Redis API
Enabling SQL Audit (OBT) After you enable the SQL audit function, all SQL operations will be recorded in log files. You can download audit logs to view details. By default, SQL audit is disabled because enabling this function may affect database performance.
Using CTS to Audit VPC Endpoints Key Operations Recorded by CTS Viewing Traces
Querying Audit Logs about a Repository or File Function Query audit logs about a repository or file.
Backing Up and Restoring Database Audit Logs Database audit logs can be backed up to OBS buckets to achieve high availability for disaster recovery. You can back up or restore database audit logs as required. Prerequisites The database audit instance is in the Running state.
Quotas and Audit Quotas Auditing Operation Records
Monitoring and Audit Cloud Eye Monitoring CTS Auditing