检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Configuring LDAP Output Audit Logs Users can set the audit log output level of the LDAP service and output audit logs in a specified directory, for example, /var/log/messages. The logs output can be used to check user activities and operation commands.
Can I Audit Databases Across Different VPCs? Yes. To audit databases in different VPCs, ensure the VPCs can communicate with each other. You can create peering connections between the VPCs. For details, see Creating a VPC Peering Connection with Another VPC in Your Account.
Choose Export Audit Log under Maintenance. Table 2 Parameters for exporting audit logs Parameter Example Value Description Export Audit Log On (Mandatory) Whether to enable audit log export. The options are: On: Audit log export is enabled. Off: Audit log export is disabled.
Screen Recording Audit Querying Screen Recording Records Querying Screen Recording Details Deleting Screen Recording Records in Batches Querying Download Addresses Querying Key Desktop Events Parent topic: Workspace APIs
How Do I Back Up the Database Audit Logs? Database audit supports manual backup and automatic backup. Audit logs are backed up to OBS. Buckets will be automatically created and will incur a separate bill. Perform the following operations to automatically back up audit logs.
This section describes how to enable the database audit function and check audit results. To audit a database, export the database configurations and install the agent on the nodes of the Cloud Container Engine (CCE) clusters connected to the database.
version alias Function version alias deleteVersionAlias Deleting a function trigger Trigger deleteTrigger Creating a function trigger Trigger createTrigger Disabling a function trigger Trigger disableTrigger Enabling a function trigger Trigger enableTrigger Parent Topic: Viewing Audit
How Long Are the Operation Logs of Database Audit Saved by Default? The operation logs of database audit are permanently saved. Parent topic: Logs
Request Table 2 Parameter description Name Mandatory Type Description ids Yes Array of strings Specifies the list of audit logs. A maximum of 50 audit log IDs are allowed in the list. Example Request Obtain the links for downloading audit logs.
ALM-12001 Audit Log Dumping Failure Description Cluster audit logs need to be dumped on a third-party server due to the local historical data backup policy. The system starts to check the dump server at 3 a.m. every day.
How Do I Verify My Database Audit Configuration? To verify your database audit configurations after you enabled audit, perform the following steps: Enter an SQL statement (for example, show databases) in the node where the agent is installed. Log in to the management console.
Querying Parameter Modification Audit Records Function This API is used to query parameter modification audit records. Call Method For details, see Calling APIs.
Step 5: Enable Database Audit By default, database audit complies with a full audit rule, which is used to audit all databases that are connected to the database audit instance. You can enable audit and check audit results. For details, see Viewing the Audit Dashboard.
Parent topic: Audit Instance
After you change the retention period of audit logs, expired audit logs will be deleted 1 hour later. After SQL audit is enabled, a large number of audit logs may be generated during peak hours.
Figure 2 Setting SQL audit In the displayed dialog box, toggle off the Audit Logging switch and select the check box "I acknowledge that after audit log is disabled, all audit logs are deleted." Deleted audit logs cannot be recovered.
The database audit instance is in the Running state. For details about how to enable database audit, see Enable Database Audit. Procedure Log in to the management console. Select a region, click , and choose Security & Compliance > Database Security Service.
Parent topic: Configuring Audit Rules
How Do I Set Database Audit Rules for All Databases? By default, database audit complies with a full audit rule, which is used to audit all databases that are connected to the database audit instance. This audit rule is enabled by default.
Parent Topic: Log Audit
