I want to check only dml,dcl,ddl in aws rds mysql audit logs.
I am using rds mysql 8.0.32 version. (not aurora mysql) This is my current mysql rds audit log. I want to leave only Data Manipulation Language, Data Definition Language, Data Control Language, and Transaction Control Language. I don't know what the logs in the image mean. My RDS option group settings are CONNECT,QUERY_DDL,QUERY_DML,QUERY_DCL. Why do such logs remain, what does it mean, and is there a way to log only the DDL, DCL, DML, and TCL I want? I put QUERY_DML_NO_SELECT in the option group as a test, but other logs like the image are not saved, but I can't even save the Select query log that I use myself. I saw the answers to other questions and included only QUERY_DML in the option group, but the logs such as the image also remain.
- Newest
- Most votes
- Most comments
Hello.
The log is the rdsadmin operation log.
rdsadmin is a user who performs administrative operations on the AWS side.
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/MysQL.Concepts.UsersAndPrivileges.html
If you do not want rdsadmin logs to be output, add "rdsadmin" to "SERVER_AUDIT_EXCL_USERS" in the options group.
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Appendix.MySQL.Options.AuditPlugin.html
Relevant content
- asked a year ago
- asked 2 years ago
- asked a year ago
AWS OFFICIALUpdated a year ago- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 8 months ago
thank you Added "rdsadmin" to "SERVER_AUDIT_EXCL_USERS" so there are no logs related to rdsadmin. I set performance.schema to 0 in parameter group, but performance_schema log remains Is there a way to not save this log?
The "performance_schema" is a static parameter and requires a restart of RDS to take effect.
Thanks for your answer. Tried rebooting, but SELECT st.* FROM performance_schema.events_statements_current st JOIN performance_schema.threads thr ON thr.thread_id = st.thread_id WHERE thr.processlist_id = 10',0, and 'SELECT st.* FROM performance_schema.events_stages_history_long st WHERE st . nesting_event_id = 0',0, and 'SELECT st.* FROM performance_schema.events_waits_history_long st WHERE st.nesting_event_id = 0',0,, Logs are saved. Whenever a select query is attempted, these three logs are saved together.
Since it is an execution of the DML language (Select), it may not be a problem if it is left in the audit log.
All right. Then we will save and use the three logs together. Thank you for answer.