检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Disabling Audit Log Dump/Kernel Audit Log Dump After the audit log dump or kernel audit log dump is enabled, you can disable it if you no longer need to dump audit logs or kernel audit logs to OBS. Log in to the DWS console.
In the Audit Settings area, set the audit items: The default audit log retention policy is space-first, which means audit logs will be automatically deleted when the size of audit logs on a single node exceeds 1 GB.
GaussDB(DWS) Cluster Log Management Log Types Supported by GaussDB(DWS) Clusters Dumping GaussDB(DWS) Database Audit Logs Viewing GaussDB(DWS) Database Audit Logs Viewing Operation Logs on the GaussDB(DWS) Console Viewing Other Logs of the GaussDB(DWS) Cluster Parent Topic: GaussDB
After the separation of permissions is enabled, a system administrator does not have the CREATEROLE attribute (security administrator) and AUDITADMIN attribute (audit administrator).
For details, see Viewing Audit Logs of Key Operations on the Management Console. Database Audit Logs In GaussDB(DWS), database logs include O&M logs (CN, DN, and OS logs) and DDL/DML database audit logs, which are audited by Log Tank Service (LTS).
Audit Switch audit_enabled Parameter description: Specifies whether to enable or disable the audit process. After the audit process is enabled, the auditing information written by the background process can be read from the pipe and written into audit files.
Auditing Audit Switch Operation Audit Parent Topic: GUC Parameters of the GaussDB(DWS) Database
Operation Audit security_enable_options Parameter description: This parameter lets you use the grant_to_public, grant_with_grant_option, and foreign_table_options functions. These functions are off by default for security. Set this parameter as needed.
Audit logs Querying Logs Parent Topic: API Description
Events can be triggered by user operations (such as audit events), or may be caused by cluster service status changes (for example, cluster repaired successfully or failed to repair the cluster).
Querying Parameter Modification Audit Records Function This API is used to query parameter modification audit records. Call Method For details, see Calling APIs.
Disabling the Audit Log Function If you want to disable the audit log function, disable the tracker in CTS. Log in to the CTS console. Disable the audit log function by disabling the tracker. To enable the audit log function again, you only need to enable the tracker.
In the navigation pane on the left, choose Tools > Table Diagnosis, and click the DDL Audit tab. The audit results are displayed. The selected audit items are displayed on the DDL Audit tab by default. You can configure the audit items on the Monitoring Collection page.
When separation of permissions is enabled, configure the username and password for Security Administrator and Audit Administrator. Then the system automatically creates these two users.
Security Shared Responsibilities Authentication and Access Control Cyber Security Data Protection Technologies Audit and Logging Service Resilience Risk Monitoring Certificates Security Notices
For how to enable and view database audit logs, see Viewing GaussDB(DWS) Database Audit Logs.
Database audit analyzes risks and sessions, and detects SQL injection attempts so you can stay apprised of your database status. Database audit provides a report template library to generate daily, weekly, or monthly audit reports according to your configurations.
API Description AZ Cluster Management Snapshot Management Event Management Data Source Audit logs Resource Management Alarm Management Connection Management Tag Management Quota Management DR Management Job Management Host Monitoring Managing Database Permissions Log Management Upgrade
() Description: Displays audit logs of all CNs.
Parent Topic: Audit logs
