检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Parent topic: Quotas and Audit
RDS for SQL Server Audit enables you to audit server-level and database-level groups of events and individual events. RDS for SQL Server audits consist of zero or more audit action items.
Operation Audit security_enable_options Parameter description: This parameter lets you use the grant_to_public, grant_with_grant_option, and foreign_table_options functions. These functions are off by default for security. Set this parameter as needed.
Can Database Audit Be Used Across AZs? Database audit is available only if the target database and your database audit instance are in the same region.
Deploying the Database Audit Agent in a Container Scenario Adding a Database and Exporting Database Configurations Installing the Agent on CCE Cluster Nodes Enabling Database Audit Checking Audit Results
Querying Audit Logs (Optional) Cloud Trace Service (CTS) records operations on CodeArts Deploy for query, audit, and backtrack.
Viewing Ranger Audit Information Ranger administrators can view audit logs about Ranger running and permission control audit logs after Ranger is used by components for authentication.
Keep the following points in mind before you enable audit logging or audit log reporting to LTS: Enabling audit logging or audit log reporting to LTS generates audit logs and the sensitive information in the audit logs is not anonymized.
Keep the following points in mind before you enable audit logging or audit log reporting to LTS: Enabling audit logging or audit log reporting to LTS generates audit logs and the sensitive information in the audit logs is not anonymized.
Figure 1 Adding an audit rule Click Next. On the displayed page, set Trigger Type and Execute Every. Click Next, confirm the information, and click Submit. You can view the added compliance rule in the rule list.
Exporting Audit Records The export function allows you to filter data in the audit list and export it to a CSV file in asynchronous mode. That is, you need to save the file to OBS and then download it to a local PC. Log in to the Huawei Cloud console.
Querying Audit Log Operators Function This API is used to query audit log operators. API Calling For details, see Calling APIs. URI GET /v3/{project_id}/user-resources Table 1 Path parameter Parameter Mandatory Type Description project_id Yes String Project ID.
Parent topic: Audit Logs
Table 3 audit_logs description Name Type Description node_id String The node ID. id String The audit log ID. name String The audit log file name. size Long The size of the audit log in byte. start_time String The start time of the audit log. The format is "yyyy-mm-ddThh:mm:ssZ".
The value is 0 when SQL audit is disabled. audit_scope String The audit scope. audit_types Array of strings The audit type.
User and Permission Audit audit_login_logout Parameter description: Specifies whether to audit the GaussDB user's login (including login success and failure) and logout. This parameter is a SIGHUP parameter. Set it based on instructions provided in Table 1.
Figure 1 Setting SQL audit To disable SQL audit, toggle off the Audit Logging switch, select the confirmation check box, and click OK. After SQL audit is disabled, all audit logs will be deleted immediately and cannot be recovered.
Figure 1 Setting SQL audit To disable SQL audit, toggle off the Audit Logging switch, select the confirmation check box, and click OK. After SQL audit is disabled, all audit logs will be deleted immediately and cannot be recovered.
audit logs will be reserved for some time when SQL audit is disabled. false: indicates that historical audit logs will be deleted immediately when SQL audit is disabled. audit_types No Array of strings This parameter applies only to RDS for MySQL.
How Do I Configure Database Audit? After purchasing a database audit instance, you need to add the database to be audited to the instance and install an agent on the database, application, or proxy side.
