检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Enabling SQL Audit (OBT) After you enable the SQL audit function, all SQL operations will be recorded in log files. You can download audit logs to view details. By default, SQL audit is disabled because enabling this function may affect database performance.
Audit and Logs Audit Cloud Trace Service (CTS) CTS records operations on the cloud resources in your account. You can use the logs generated by CTS to perform security analysis, track resource changes, audit compliance, and locate faults.
Downloading SQL Audit Logs If you enable SQL audit, the system records all SQL operations and uploads logs every half an hour or when the size is accumulated to 100 MB. You can download audit logs to view details. The minimum time unit of audit logs is second.
You can also analyze binlogs or audit logs to check whether a DDL statement and transaction with consistent snapshot are executed concurrently on the same table. Solution Do not execute a DDL statement and transaction with consistent snapshot concurrently on the same table.
You can use the logs generated by CTS to perform security analysis, track resource changes, audit compliance, and locate faults. After you enable CTS and configure a tracker, CTS can record management and data traces of TaurusDB for auditing.
Security Shared Responsibilities Identity Authentication and Access Control Data Protection Audit and Logs Risk Monitoring Fault Rectification Certificates
If you need to enable general_log for full SQL audit and troubleshooting, you can use TOP SQL and SQL Insights. Parent Topic: Log Management
log policy gaussdb:instance:modifyTraceSQLPolicy - Querying an audit log policy gaussdb:log:list - Obtaining an audit log list gaussdb:log:list - Obtaining the link for downloading an audit log gaussdb:log:list - Changing the private IP address for read of a read replica gaussdb:
Key Operations Supported by CTS Cloud Trace Service (CTS) records operations related to TaurusDB for further query, audit, and backtracking. Table 1 lists the supported operations.
Cloud Trace Service (CTS) Records operations on cloud service resources for future query, audit, and backtrack. Data Replication Service (DRS) Smoothly migrates databases to the cloud.
After this function is enabled, audit logs record all requests sent to your DB instance and are stored in LTS. Configuring Log Reporting Enabling Log Reporting Disabling Log Reporting Log in to the management console.
Log Management Configuring Log Reporting Managing Error Logs of a DB Instance Managing Slow Query Logs of a DB Instance Configuring SQL Explorer for a DB Instance Querying and Downloading Binlogs (OBT) Enabling SQL Audit (OBT) Downloading SQL Audit Logs