Updated on 2023-08-18 GMT+08:00

Step 5: Enable Database Audit

By default, database audit complies with a full audit rule, which is used to audit all databases that are connected to the database audit instance. You can enable audit and check audit results. For details, see Viewing the Audit Dashboard.

Prerequisites

  • You have added and installed an agent, and the agent status is Running.
  • A security group rule has been configured for the database audit instance.

Enabling Database Audit

  1. Log in to the management console.
  2. Select a region, click , and choose Security & Compliance > Database Security Service. The Dashboard page is displayed.
  3. In the navigation tree on the left, choose Databases.

    Figure 1 Going to the Databases page

  4. Select a database audit instance from the Instance drop-down list.
  5. In the database list, click Enable in the Operation column of the database you want to audit.

    The Audit Status of the database is Enabled. You do not need to restart the database.

    Figure 2 Enabling database audit

Verifying Audit Results

  1. Run an SQL statement (for example, show databases) in the target database.
  2. Log in to the management console.
  3. Select a region, click , and choose Security & Compliance > Database Security Service. The Dashboard page is displayed.
  4. In the navigation tree on the left, choose Data Reports. The Data Reports page is displayed.
  5. In the Instance drop-down list, select the instance that audits the target database.
  6. Click the Statements tab.
  7. Click next to Time to set the start and end time, and click Submit. The SQL statements entered in 1 will be displayed.

    Figure 3 Viewing SQL statements