检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
To avoid risks caused by centralized permissions, you can enable separation of duties to assign the system administrator's user creation permission to security administrators and audit management permission to audit administrators.
To avoid risks caused by centralized permissions, you can enable separation of duties to assign the system administrator's user management permission to security administrators and audit management permission to audit administrators.
To avoid risks caused by centralized permissions, you can enable separation of duties to assign the system administrator's user management permission to security administrators and audit management permission to audit administrators.
To avoid risks caused by centralized permissions, you can enable separation of duties to assign the system administrator's user management permission to security administrators and audit management permission to audit administrators.
To avoid risks caused by centralized permissions, you can enable separation of duties to assign the system administrator's user creation permission to security administrators and audit management permission to audit administrators.
Value range: Boolean on: Unified audit logs are sent to Elasticsearch. off: Unified audit logs are not sent to Elasticsearch. Default value: off is_sysadmin Parameter description: Specifies whether the current user is an initial user.
To avoid risks caused by centralized permissions, you can enable separation of duties to assign the system administrator's user creation permission to security administrators and audit management permission to audit administrators.
Logs and Auditing Downloading Error Logs and Slow Query Logs of a GaussDB Instance Downloading Switchover/Failover Logs of a GaussDB Instance Querying Audit Logs of GaussDB Instances on CTS Interconnecting with LTS and Querying Database Audit Logs
Audit Administrator An audit administrator is an account with the AUDITADMIN attribute, which has the permission to view and delete audit logs.
Audit Administrator An audit administrator is an account with the AUDITADMIN attribute, which has the permission to view and delete audit logs.
To avoid risks caused by centralized permissions, you can enable separation of duties to assign system administrators' user management permission to CREATEROLE and audit management permission to AUDITADMIN.
SQL Syntax ABORT ALTER AUDIT POLICY ALTER COORDINATOR ALTER DATABASE ALTER DEFAULT PRIVILEGES ALTER DIRECTORY ALTER FUNCTION ALTER GLOBAL CONFIGURATION ALTER GROUP ALTER INDEX ALTER LANGUAGE ALTER MASKING POLICY ALTER MATERIALIZED VIEW ALTER NODE ALTER NODE GROUP ALTER RESOURCE LABEL
You can change the parameter value to audit only the operations on required database objects. During a forcible primary/standby failover, set audit_system_object to the maximum value and audit all DDL objects.
Audit Administrator An audit administrator is an account with the AUDITADMIN attribute, which has the permission to view and delete audit logs.
Audit Administrator An audit administrator is an account with the AUDITADMIN attribute, which has the permission to view and delete audit logs.
Audit Administrator An audit administrator is an account with the AUDITADMIN attribute, which has the permission to view and delete audit logs.
SQL Syntax ABORT ALTER AGGREGATE ALTER AUDIT POLICY ALTER DATABASE ALTER DEFAULT PRIVILEGES ALTER DIRECTORY ALTER FUNCTION ALTER GLOBAL CONFIGURATION ALTER GROUP ALTER INDEX ALTER LANGUAGE ALTER MASKING POLICY ALTER MATERIALIZED VIEW ALTER OPERATOR ALTER PACKAGE ALTER PROCEDURE ALTER
You can change the value of this parameter to audit only the operations on required database objects. In the scenario where the leader node is forcibly selected, you are advised to set audit_system_object to the maximum value and audit all DDL objects.
You can change the parameter value to audit only the operations on required database objects. During a forcible primary/standby failover, set audit_system_object to the maximum value and audit all DDL objects.
Database Security Users and Permissions Database Audit
