Search_HUAWEI CLOUD

PG_AUTHID - GaussDB
PG_AUTHID - GaussDB

that is, whether the role can be given as the initial session authorization identifier. t (true): yes f (false): no rolreplication Boolean Specifies whether the role has the replication permission. t (true): yes f (false): no rolauditadmin Boolean Specifies whether the role has the audit

Help > GaussDB > Developer Guide(Centralized_V2.0-8.x) > System Catalogs and System Views > System Catalogs > Connection and Authentication
Parameters Related to Log Output - GaussDB

This parameter has an impact on viewing audit results, PG_STAT_ACTIVITY, and the GUC parameter log_line_prefix. Table 2 describes the parameter levels of Table 1.

Help > GaussDB > Developer Guide(Distributed_V2.0-8.x) > Application Development Guide > Appendix
PG_AUTHID - GaussDB
PG_AUTHID - GaussDB

that is, whether the role can be given as the initial session authorization identifier. t (true): yes f (false): no rolreplication boolean Specifies whether the role has the replication permission. t (true): yes f (false): no rolauditadmin boolean Specifies whether the role has the audit

Help > GaussDB > Developer Guide(Distributed_V2.0-8.x) > System Catalogs and System Views > System Catalogs > Connection and Authentication
GS_ROLES - GaussDB
GS_ROLES - GaussDB

(false): no rolcanlogin boolean N/A Specifies whether the role can log in to the database. t (true): yes f (false): no rolreplication boolean N/A Specifies whether the role can be replicated. t (true): yes f (false): no rolauditadmin boolean N/A Specifies whether the role is an audit

Help > GaussDB > Developer Guide(Centralized_V2.0-8.x) > System Catalogs and System Views > System Views > User and Permission Management
V2.0-3.x Versions - GaussDB
V2.0-3.x Versions - GaussDB

User-level audit settings The audit function is enhanced as follows: User-level audit is supported. The GUC parameter full_audit_users is added to set the list of audited users. Audit logs are recorded for all SQL statements executed by users in the list.

Help > GaussDB > Product Bulletin > Kernel Release History
PG_ROLES - GaussDB
PG_ROLES - GaussDB

false): no. rolcanlogin Boolean N/A Specifies whether the role can log in to the database. t (true): yes. f (false): no. rolreplication Boolean N/A Specifies whether the role can be replicated. t (true): yes. f (false): no. rolauditadmin Boolean N/A Specifies whether the role is an audit

Help > GaussDB > Developer Guide(Distributed_V2.0-3.x) > System Catalogs and System Views > System Views
CREATE MASKING POLICY - GaussDB
CREATE MASKING POLICY - GaussDB

FILTER_TYPE: 1 IP | APP | ROLES Parameters policy_name Specifies the audit policy name, which must be unique.

Help > GaussDB > Developer Guide(Centralized_V2.0-2.x) > SQL Reference > SQL Syntax
PG_ROLES - GaussDB
PG_ROLES - GaussDB

false): no. rolcanlogin Boolean N/A Specifies whether the role can log in to the database. t (true): yes. f (false): no. rolreplication Boolean N/A Specifies whether the role can be replicated. t (true): yes. f (false): no. rolauditadmin Boolean N/A Specifies whether the role is an audit

Help > GaussDB > Developer Guide(Centralized_V2.0-8.x) > System Catalogs and System Views > System Views > User and Permission Management
PG_ROLES - GaussDB
PG_ROLES - GaussDB

false): no. rolcanlogin boolean N/A Specifies whether the role can log in to the database. t (true): yes. f (false): no. rolreplication boolean N/A Specifies whether the role can be replicated. t (true): yes. f (false): no. rolauditadmin boolean N/A Specifies whether the role is an audit

Help > GaussDB > Developer Guide(Distributed_V2.0-8.x) > System Catalogs and System Views > System Views > User and Permission Management
GS_ROLES - GaussDB
GS_ROLES - GaussDB

false): no. rolcanlogin boolean N/A Specifies whether the role can log in to the database. t (true): yes. f (false): no. rolreplication boolean N/A Specifies whether the role can be replicated. t (true): yes. f (false): no. rolauditadmin boolean N/A Specifies whether the role is an audit

Help > GaussDB > Developer Guide(Distributed_V2.0-8.x) > System Catalogs and System Views > System Views > User and Permission Management
Security Functions - GaussDB
Security Functions - GaussDB

If the database is connected to the local PC, the value is empty. pg_query_audit Description: Views audit logs of the primary database node. Return type: record The following table describes return fields.

Help > GaussDB > Developer Guide(Centralized_V2.0-2.x) > SQL Reference > Functions and Operators
Security Functions - GaussDB
Security Functions - GaussDB

If a local connection is used, the value is empty. gs_query_audit(starttime, endtime, audit_log) Description: Queries the audit logs of the current CN. Parameters: timestamptz starttime and timestamptz endtime[,audit_log] Return type: record Table 1 describes the return columns.

Help > GaussDB > Developer Guide(Distributed_V2.0-8.x) > SQL Reference > Functions and Operators
Users and Permissions - GaussDB
Users and Permissions - GaussDB

That is, the system administrator can neither create roles or users, nor view or maintain database audit logs. In MySQL, administrator roles cannot be set for users, and there is no design for separation of duties.

Help > GaussDB > Compatibility(Centralized) > MySQL Compatibility Description > M-compatible Mode > SQL
Security Functions - GaussDB
Security Functions - GaussDB

Return type: record The return fields of this function are the same as those of the pg_query_audit function. pg_delete_audit Description: Deletes audit logs in a specified period.

Help > GaussDB > Developer Guide(Distributed_V2.0-3.x) > SQL Reference > Functions and Operators
Modifying GaussDB Instance Parameters - GaussDB

How Do I Enable the Audit of INSERT, UPDATE, and DELETE Operations in GaussDB? How Do I Set the Maximum Number of WAL Sender Threads That Can Be Created in GaussDB? How Do I Set the Maximum Number of Bytes to Be Logged for Each SQL Statement in GaussDB?

Help > GaussDB > User Guide > Parameter Management
Users and Permissions - GaussDB
Users and Permissions - GaussDB

That is, the system administrator can neither create roles or users, nor view or maintain database audit logs. In MySQL, administrator roles cannot be set for users, and there is no design for separation of duties.

Help > GaussDB > Compatibility(Distributed) > MySQL Compatibility Description > M-compatible Mode > SQL
Database Objects - GaussDB
Database Objects - GaussDB

ALTER statement to specify the user as CREATEROLE. gaussdb=# CREATE USER u2 PASSWORD '********'; gaussdb=# ALTER USER u2 CREATEROLE; -- Drop. gaussdb=# DROP USER u1; gaussdb=# DROP USER u2; AUDITADMIN An account with the AUDITADMIN attribute has the permissions to view and delete audit

Help > GaussDB > Developer Guide(Centralized_V2.0-8.x) > Basic Concepts
Database Objects - GaussDB
Database Objects - GaussDB

the ALTER statement to specify the user as CREATEROLE. gaussdb=#CREATE USER u2 PASSWORD '********'; gaussdb=#ALTER USER u2 CREATEROLE; -- Drop. gaussdb=#DROP USER u1; gaussdb=#DROP USER u2; AUDITADMIN An account with the AUDITADMIN attribute has the permissions to view and delete audit

Help > GaussDB > Developer Guide(Distributed_V2.0-8.x) > Basic Concepts
Viewing LTS Log Configurations - GaussDB

Range audit_log: audit log lts_group_id String Definition ID of the LTS log group. If enabled is set to false, this parameter indicates the ID of the latest associated LTS log group. Range N/A lts_stream_id String Definition ID of the LTS log stream.

Help > GaussDB > API Reference > APIs (Recommended) > LTS Logs
Data Damage Detection and Repair Functions - GaussDB

You are advised to enable the audit logging function before using the function to record audit information. Calling this system function is a high-risk operation. Exercise caution when performing this operation.

Help > GaussDB > Developer Guide(Centralized_V2.0-3.x) > SQL Reference > Functions and Operators

Total results: 244

Was this helpful?

Feedback

/200

Submit Cancel