检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Figure 14 Setting data sources Select the GaussDB(DWS) connection information, click Edit Permissions, deselect Encrypt connections, and click OK. Figure 15 Switching to a non-encrypted connection Close the window for setting the data source.
See Table 1 for application scenarios and Data Export By a User Without Required Permissions for operation details. gs_dump and gs_dumpall encrypt the exported data files. These files are decrypted before being imported to prevent data disclosure for higher database security.
10.10.10.100 -g gs_dumpall[port=''][2018-11-14 19:06:24]: dumpall operation successful gs_dumpall[port=''][2018-11-14 19:06:24]: total time: 1150 ms Example 2: Use gs_dumpall to run the following command as the cluster administrator dbadmin to export global tablespaces in a cluster, encrypt
Table 7 Data encryption information Parameter Description Key Name Indicates the database encryption key of the cluster when Encrypt DataStore is enabled. Last Key Rotation Time Indicates the time when the last encryption key is rotated when Encrypt DataStore is enabled.
- Enable SSL If Enable SSL is selected, the client can use SSL to encrypt connections. The SSL mode is more secure than common modes, so you are advised to enable SSL connection. - When Enable SSL is selected, download and decompress the SSL certificate.
***:9000', type'HDFS'); CREATE SERVER obs_server FOREIGN DATA WRAPPER dfs_fdw OPTIONS ( address 'obs.ap-southeast-1.myhuaweicloud.com' , ACCESS_KEY 'access_key_value_to_be_replaced', SECRET_ACCESS_KEY 'secret_access_key_value_to_be_replaced', encrypt 'on',
- Enable SSL If Enable SSL is selected, the client can use SSL to encrypt connections.
The \i+, \ir+, and \include_relative+ meta-commands and the input and output parameter -k are added to encrypt imported and exported files. Historical command lines cannot be printed to files using the \s meta-command.
backup/MPPDB_backup.sql -p 8000 -h 10.10.10.100 -s gs_dumpall[port=''][2018-11-14 11:28:14]: dumpall operation successful gs_dumpall[port=''][2018-11-14 11:28:14]: total time: 4147 ms Example 3: Use gs_dumpall to run the following command export data of all databases in a cluster, encrypt
- Enable SSL If Enable SSL is selected, the client can use SSL to encrypt connections. The SSL connection mode is more secure than common modes, so you are advised to enable SSL connection. - If Enable SSL is selected, download the SSL certificate and decompress it.
For security, encrypt your AK/SK and store them in the configuration file or environment variables. 1 2 3 4 5 6 7 8 9 CREATE SERVER obs_server FOREIGN DATA WRAPPER DFS_FDW OPTIONS ( address 'obs.example.com:5443', //Address for accessing OBS encrypt 'on', access_key '{AK value}'
After Encrypt DataStore is enabled, the key cannot be disabled, deleted, or frozen when being used. Otherwise, the cluster becomes abnormal and the database becomes unavailable.
- encrypt Specifies whether data is encrypted. This parameter is available only when type is OBS.
You can use pgcrypto to encrypt data. Developer Guide > Database Security Management> Sensitive Data Management> Use pgcrypto to Encrypt Data The object_name column in the audit log records all read and write objects in the SQL statement.
For security purposes, encrypt your AK and SK and store them in the configuration file or environment variables. 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 DROP FOREIGN TABLE product_info_ext; CREATE FOREIGN TABLE product_info_ext
(Optional) Database encryption key (DEW) If you have enabled the Encrypt DataStore function for a cluster and purchased a key on DEW, the key is not deleted after you delete the cluster. Manually unsubscribe from and delete the key to stop billing.
- Table 3 OPTIONS parameters of the data format Parameter Description Value Range encrypt Specifies whether HTTPS is enabled for data transfer. on enables HTTPS and off disables it (in this case, HTTP is used).
: = + - @ Encrypt DataStore If this function is enabled, Key Management Service (KMS) encrypts the cluster and the cluster's snapshot data.
For security, encrypt your AK/SK and store them in the configuration file or environment variables. If the message "ERROR: schema "xxx" does not exist Position" is displayed when you create a foreign table, the schema does not exist.
port=''][human_resource][2017-07-21 16:06:31]: dump database human_resource successfully gs_dump[port=''][human_resource][2017-07-21 16:06:31]: total time: 2522 ms Example 5: Use gs_dump to run the following command to export the object definitions of the hr and public schemas, encrypt
