Process Overview
This section describes how to quickly enable database audit.
Background
Database audit supports auditing user-installed databases on ECS/BMS as well as RDS databases on the management console.
- Ensure the VPC, security group, and subnet of the database audit instance are the same as those of the node (application side or database side) where you plan to install the database audit agent. Otherwise, the instance will be unable to connect to the agent or perform audit.
- If SSL is enabled for a database, the database cannot be audited. To use database audit, disable SSL first.
Create a database audit instance, connect the instance with the target database, and enable database audit.
Auditing Databases Using Agents
|
Step |
Configuration |
Description |
|---|---|---|
|
1 |
Apply for database audit. Add a database to the database audit instance and enable audit for the database. |
|
|
2 |
Select an agent add mode. Database audit supports auditing databases built on ECS, BMS, and RDS on the cloud. Select an agent add mode based on your database deployed on the management console. |
|
|
4 |
Download and then install the agent on the database or application, as required by the add mode you chose. |
|
|
5 |
Enable database audit and connect the added database to the database audit instance. |
|
|
6 |
By default, database audit complies with a full audit rule, which is used to audit all databases that are connected to the database audit instance. You can view the audit result on the database audit page. |
Verifying the Result
When you connect the added database to the database audit instance, database audit records all operations performed on the database. You can view the audit result on the database audit page.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
