检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Parent topic: Audit Logs
Audit Rule - Risky Operation Enabling or Disabling a Risk Rule Querying a Risk Rule Policy Querying a Specified Risk Rule Policy Audit Instance Risk Rule Sorting Deleting a Risk Rule Adding a Risk Rule Editing a Risky Operation Policy Parent topic: API
Exporting Audit Records The export function allows you to filter data in the audit list and export it to a CSV file in asynchronous mode. That is, you need to save the file to OBS and then download it to a local PC. Log in to the Huawei Cloud console.
Figure 1 Adding an audit rule Click Next. On the displayed page, set Trigger Type and Execute Every. Click Next, confirm the information, and click Submit. You can view the added compliance rule in the rule list.
If you enable audit logging first and then enable audit log reporting to LTS, LTS reuses the audit policy set for your instance and you will also be billed for reporting audit logs to LTS. Only after you disable audit logging, billing for audit logging will be terminated.
Audit Rule - SQL Injection Querying SQL Injection Rule Policies Deleting a Customized SQL Rule Editing a Customized SQL Rule SQL rule priority Adding a Customized SQL Rule Enabling or Disabling the SQL Injection Policy Parent topic: API
Event Audit There are three levels of event severity: Warning Minor Major For details, see Table 1. Table 1 Event types Category Event Type Event Severity Description Application monitoring Application startup Warning Monitors the application startup event on a cloud desktop.
Viewing Audit Logs Once CTS is enabled, the system starts recording operations on CCM. Operation records generated during the last seven days can be viewed on the CTS console. Viewing an SCM Trace on the CTS Console Log in to the CCM console.
Querying Audit Log Operators Function This API is used to query audit log operators. API Calling For details, see Calling APIs. URI GET /v3/{project_id}/user-resources Table 1 Path parameter Parameter Mandatory Type Description project_id Yes String Project ID.
Querying SQL Audit Policy Function This API is used to query the policy for SQL audit logs.
Obtaining the Audit Log List Description This API is used to obtain an audit log list.
Parent topic: Audit Logs
Figure 1 Setting SQL audit To disable SQL audit, toggle off the Audit Logging switch, select the confirmation check box, and click OK. After SQL audit is disabled, all audit logs will be deleted immediately and cannot be recovered.
Constraints N/A Range true: Historical audit logs will be reserved for some time when SQL audit is disabled. false: Historical audit logs will be deleted immediately when SQL audit is disabled.
Updating the Status of a Tenant Audit Information Summary Task Function Update the status of a tenant audit information summary task.
Obtaining the Status of the Tenant Audit Information Summary Task Function Obtaining the Status of the Tenant Audit Information Summary Task URI GET /v3/{project_id}/audit/summary/{busi_type}/task-status Table 1 Path Parameters Parameter Mandatory Type Description project_id Yes String
audit logs will be reserved for some time when SQL audit is disabled. false: indicates that historical audit logs will be deleted immediately when SQL audit is disabled. audit_types No Array of strings This parameter applies only to RDS for MySQL.
that historical audit logs are retained when SQL audit is disabled. false: indicates that existing historical audit logs are deleted when SQL audit is disabled. audit_scope String No This parameter is valid only when the audit log policy is enabled.
Audit logs are generated for communication among tools or nodes in the database server. To save space occupied by audit logs and improve the query performance of audit logs, the low-risk scenarios cannot be audited by configuring the no_audit_client parameter.
User and Permission Audit audit_login_logout Parameter description: Specifies whether to audit the GaussDB user's login (including login success and failure) and logout. This is a SIGHUP parameter. Set it based on instructions provided in Table 1.
