Process Overview
Background
Database audit supports auditing user-installed databases on ECS/BMS as well as RDS databases on Huawei Cloud.
- Database audit cannot be used across regions. The database to be audited and the database audit instance you purchased must be in the same region.
- If SSL is enabled for a database, the database cannot be audited. To use database audit, disable SSL first. For details, see How Do I Disable SSL for a Database?
- For details about audit data storage, see How Long Is the Audit Data of Database Audit Stored by Default?
Auditing Databases Without Agents
Databases of some types and versions can be audited without using agents, as shown in Table 1.
| Database Type | Supported Edition |
|---|---|
| GaussDB(for MySQL) | All editions are supported by default. |
| RDS for SQLServer (Supported by CTS 23.02.27.182148 and later versions) | All editions are supported by default. |
| RDS for MySQL |
|
| GaussDB(DWS) |
|
| PostGresql (Supported by CTS 23.04.17.123301 and later versions) |
|
| Step | Configuration | Description |
|---|---|---|
| 1 | Purchase database audit. Add a database to the database audit instance and enable audit for the database. Apply for database audit. Add a database to the database audit instance and enable audit for the database. | |
| 2 | Enable database audit and connect the added database to the database audit instance. | |
| 3 | By default, database audit complies with a full audit rule, which is used to audit all databases that are connected to the database audit instance. You can view the audit result on the database audit page. NOTICE: You can set database audit rules as required. For details, see Adding Audit Scope. |
Last Article: Enabling and Using Database Audit (Without Installing Agents)
Next Article: Purchasing Database Audit
Did this article solve your problem?
Thank you for your score!Your feedback would help us improve the website.