Audit Log Collection Is Enabled
Rule Details
|
Parameter |
Description |
|---|---|
|
Rule Name |
gaussdb-instance-enable-auditLog |
|
Identifier |
gaussdb-instance-enable-auditLog |
|
Description |
If the audit log is not enabled for a GaussDB instance, this instance is non-compliant. |
|
Tag |
gaussdb |
|
Trigger Type |
Configuration change |
|
Filter Type |
gaussdb.instance |
|
Rule Parameters |
None |
Application Scenarios
The audit function records all user activities on databases. You can view audit logs to perform security assessments and pinpoint problem causes, thereby enhancing system operational efficiency.
If you enable log reporting, audit logs generated by GaussDB instances will be uploaded to Log Tank Service (LTS) for management. You can view detailed audit logs of GaussDB instances, search, visualize, and download logs, and view real-time logs. For details, see Interconnecting with LTS and Querying Database Audit Logs.
Solution
Enable the function of uploading audit logs to LTS. For details, see Enabling Upload Audit Logs to LTS.
Rule Logic
- If audit logs are not uploaded to LTS, the GaussDB instance is non-compliant.
- If audit logs are uploaded to LTS, the GaussDB instance is compliant.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
