Help Center/ GaussDB/ Developer Guide(Distributed_2.x)/ GUC Parameters/ Auditing/ User and Permission Audit

Updated on 2023-10-23 GMT+08:00

View PDF

User and Permission Audit

audit_login_logout

Parameter description: Specifies whether to audit the GaussDB user's login (including login success and failure) and logout.

This parameter is a SIGHUP parameter. Set it based on instructions provided in Table 1.

Value range: an integer ranging from 0 to 7

0 indicates that the function of auditing users' logins and logouts is disabled.
1 indicates that only successful user logins are audited.
2 indicates that only failed user logins are audited.
3 indicates that successful and failed user logins are audited.
4 indicates that only user logouts are audited.
5 indicates that successful user logouts and logins are audited.
6 indicates that failed user logouts and logins are audited.
7 indicates that successful user logins, failed user logins, and logouts are audited.

Default value: 7

audit_database_process

Parameter description: Specifies whether to audit the GaussDB user's login (including login success and failure) and logout.

This parameter is a SIGHUP parameter. Set it based on instructions provided in Table 1.

Value range: 0 or 1

0 indicates that the function of auditing GaussDB start, stop, recovery, and switchover operations of a database is disabled.
1 indicates that the function of auditing GaussDB start, stop, recovery, and switchover operations of a database is enabled.

Default value: 1

audit_user_locked

Parameter description: Specifies whether to audit the GaussDB user's locking and unlocking.

This parameter is a SIGHUP parameter. Set it based on instructions provided in Table 1.

Value range: 0 or 1

0 indicates that the function of auditing user's locking and unlocking is disabled.
1 indicates that the function of auditing user's locking and unlocking is enabled.

Default value: 1

audit_user_violation

Parameter description: Specifies whether to audit the access violation operations of a user.

This parameter is a SIGHUP parameter. Set it based on instructions provided in Table 1.

Value range: 0 or 1

0 indicates that the function of auditing the access violation operations of a user is disabled.
1 indicates that the function of auditing the access violation operations of a user is enabled.

Default value: 0

audit_grant_revoke

Parameter description: Specifies whether to audit the granting and reclaiming of the GaussDB user's permission.

This parameter is a SIGHUP parameter. Set it based on instructions provided in Table 1.

Value range: 0 or 1

0 indicates that the function of auditing the granting and reclaiming of a user's permission is disabled.
1 indicates that the function of auditing the granting and reclaiming of a user's permission is enabled.

Default value: 1

Parent topic: Auditing

Previous topic: Audit Switch

Next topic: Operation Auditing

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.