只有具有SYSADM权限的用户才能配置和使用审计功能。
Only users with SYSADM authority can configure and use the audit facility.
您已经看到了如何配置和使用审计功能,接下来我们来体验一个完整的场景,这个场景展示了从开始到结束的完整过程。
Now that you have seen how to configure and use the audit facility, let's walk through a complete scenario that shows the entire process from start to finish.
假设您配置了审计功能,使之对重新配置审计功能的失败的和成功的尝试都进行审计。
Suppose you configured the audit facility to audit both failed and successful attempts of re-configuring the audit facility.
审计功能现在根据指定的审计配置生成所有审计记录,可以控制访问DB2 的用户、访问时间和用户所在的位置等关键信息。
The audit facility now produces all audit records based on the audit configuration specified, controlling critical information about who is accessing DB2, when, and from where.
可以使用db2audit命令来配置和操作审计功能。
The db2audit command is used to configure and operate the audit facility.
清单1展示了用于配置和操作审计功能的db2audit命令的语法。
Listing 1 shows the syntax of the db2audit command, which is used to configure and operate the audit facility.
还可以在db2audit命令中使用ERRORTYPE 子句来配置审计功能处理错误的方式。
You can also configure the way you want the audit facility to handle errors using the ERRORTYPE clause in the db2audit command.
这个选项可以对任何用户的键盘操作进行日志记录,它可以配置为在本地存储审计信息,也可以使用KornShell连网功能执行远程存储。
This option enables keyboard logging of any user and can be configured to store the audit information locally or remotely using Korn Shell networking.
cfg文件存储审计功能的配置信息。
The db2audit.cfg file stores the facility's configuration information.
之所以会生成这条记录,是因为审计功能被配置为在发生提取操作时记录所有审计事件。
This additional record was generated because the audit facility was configured to log all audit events at the time the extraction took place.
配置了要监视的事件的类型,并且也配置了状态和错误处理选项之后,便可以启动审计功能。
Once you have configured the types of events you want to monitor, as well as the status and error handling options, you can start the audit facility.
例如,如果只需要审计数据库连接和系统管理事件类型,那么在配置审计功能时应该仅指定VALIDATE和SYSADMIN事件类型。
For example, if you only needed to audit database connection and system administration event types, you would only specify the VALIDATE and SYSADMIN event types when configuring the facility.
解决方案还提供漏洞评估和配置审计功能,让 DBA 可以直接评估数据库的安全性。
The solution also provides vulnerability assessment and configuration-auditing capabilities that enable DBAs to directly evaluate the security of their databases.
审计功能的配置主要有两个方面。
There are two main aspects of configuring the audit facility.
为了将审计功能配置成监视所有事件类型,同时记录成功的和失败的尝试,并且使用audit错误处理选项,可发出以下db2audit命令。
To configure the audit facility to monitor all event types, logging both successful and failed attempts, as well as using the audit error processing option, issue the following db2audit command.
在午餐时间的一个小时内,您首先对审计功能进行配置,使之审计CHECKING事件类型,只记录失败的尝试,并且使用NORMAL错误处理。
During one lunch hour, you begin by configuring the audit facility to audit the CHECKING event type, recording only failed attempts and using NORMAL error processing.
并在Spring的配置中启动审计功能,如下。
And then activate auditing in your Spring config as follows.
首先配置审计功能,使之审计CHECKING事件类型,只记录失败的尝试,并使用NORMAL错误处理。
You begin by configuring the audit facility to audit the CHECKING event type, recording only failed attempts and using NORMAL error processing.
配置核实与审计。查明配置文件中确定的性能与功能要求已经达到。
Configuration Verification and Auditing. Establishing that the performance and functional requirements defined in the configuration documentation have been met.
为了保证系统的实用性,审计系统还提供了功能齐备的用户层审计管理工具,包括审计配置和审计查询图形工具和一些审计命令。
As far as availability, auditing system provides functional user managing tools, including auditing configuration and auditing checking GUI tools and some shell commands.
一个完整的SCM环境要具有版本控制、变更管理、状态统计和配置审计的功能。
A complete SCM environment must have version control, change management, state statistics and configuration auditing functions.
一个完整的SCM环境要具有版本控制、变更管理、状态统计和配置审计的功能。
A complete SCM environment must have version control, change management, state statistics and configuration auditing functions.
应用推荐