How Can I Start Database Maintenance in a CBH System?

Prerequisites

• You have purchased a CBH instance and the CBH system can be logged in. To manage databases by command, purchase a professional CBH instance. You can then manage databases by command in the host operation module.
• The network connection between the databases and CBH instance is normal. The security group of the CBH instance allows inbound access through port 33306, and the database security group allows access from the IP address of the CBH instance.

Managing Databases in the Host Operation Module

The host O&M module makes it easy for you to maintain MySQL, SQL Server, Oracle, and DB2 databases by Single Sign-On (SSO) authentication.

1. The administrator creates a host resource for databases.

   Choose Resource > Host, set the Protocol Type to DB2, MySQL, SQL Server, or Oracle, and add or let the system generate a database account. For details about other parameters, see Creating a Host Resource.

2. Assign access control permissions to users as an administrator.
   • Choose Policy > ACL Rules, grant the database access permissions to users, and relate the users to the account generated in the last step. For details, see Creating an ACL Rule.
   • Choose Policy > Database Control Rules. For MySQL and Oracle databases, you can configure key operation control rules to perform command interception. For details, see Database Control Rules.

3. Log in to the database as an O&M user.

   Choose Operation > Host Operation and log in to the database as an authorized user. For details about how to log in to a database as an authorized user, see Logging In to CBH Using an SSO Client.

   O&M users can add, delete, modify, and query managed databases, view the commands that are being executed on the Live Session page, and view history command operation records on theHistory Session page.

   When an O&M user runs a critical operation command, the system automatically initiates command interception and generates a database authorization ticket. To continue the O&M operation, the O&M user needs to submit an application to the administrator for approval.

   

   The host O&M module does not support the generation and download of historical database O&M session videos.

Managing Databases in the Application O&M Module

The application O&M module App Operation allows you to maintain all types of databases through web sessions and automatically inputs account usernames and passwords of databases. Before managing databases in this module, ensure that the network connection between the database to be managed and the application publishing server is normal and the network connection between the application publishing server and the CBH instance is normal.

1. Create an application for databases to be managed as an administrator.

   Choose Resource > Application Publish, configure an application of database type, and add or let system generate a database account. For details about other parameters, see Publishing an Application.

2. Assign access control permissions to users as an administrator.

   Choose Policy > ACL Rules, grant the database access permissions to users, and relate the users to the account generated in the last step. For details, see Creating an ACL Rule.

3. Log in to the database as an O&M user.

   Choose Operation > App Operation and authorize users to log in to database resources. For details about O&M session operations, see Application O&M.

   O&M users can record database O&M sessions by video and download session videos from the History Session module.

   

   The application O&M module does not support command interception during O&M sessions.

For more information about database O&M, see Which Types of Databases Can I Manage in a CBH System?