查询告警日志
<p class="shortdesc">当数据库审计服务监测到异常访问时,会根据匹配的安全规则的级别产生相应级别的告警日志。您可以查看所有产生告警的SQL语句及告警等级,并可以根据时间、字段和告警等级、规则名称等条件进行筛选告警日志。</p>
<section class="section prereq" id="alarmlog__prereq_uxw_xpr_4sb"><div class="tasklabel"><h2 class="doc-tairway">前提条件</h2></div>
<p class="p">您已创建实例。</p>
<p class="p">您已添加资产。</p>
</section>
<section><div class="tasklabel"><h2 class="doc-tairway">操作步骤</h2></div><ol class="ol steps"><li class="li step stepexpand">
<span class="ph cmd">登录<a class="xref" href="https://www.ocftcloud.com/console/db-audit" target="_blank" rel="external noopener">数据库审计控制台</a>,进入<span class="keyword wintitle">实例列表</span>页面。</span>
</li><li class="li step stepexpand">
<span class="ph cmd">单击目标实例<span class="ph uicontrol">操作</span>列的<span class="ph uicontrol">管理</span>,进入数据库审计控制台。</span>
<div class="itemgroup info">
<img class="image" id="alarmlog__d23e47" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-12277d5f94d4.png" width="700">
</div>
</li><li class="li step stepexpand">
<span class="ph cmd">在菜单栏选择<strong class="ph b"><span class="ph menucascade"><span class="ph uicontrol">查询分析</span><abbr> > </abbr><span class="ph uicontrol">告警日志</span></span></strong>,进入<span class="keyword wintitle">告警日志</span>页面,设置查询条件(如时间范围、报文、资产等),单击<span class="ph uicontrol">搜索</span>即可查询相关告警日志。</span>
<div class="itemgroup info">
<img class="image" id="alarmlog__image_e5f_sdr_4sb" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-17fd197792e4.png" width="700">
</div>
</li><li class="li step stepexpand">
<span class="ph cmd">单击<span class="ph uicontrol">操作</span>列<span class="ph uicontrol">详细</span>可查看详细的告警信息。</span>
<div class="itemgroup info">
<img class="image" id="alarmlog__image_eyp_4nr_4sb" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-163e00b79813.png" width="600">
</div>
</li><li class="li step stepexpand">
<span class="ph cmd">对于普通规则产生的告警,为避免产生大量告警,可设置白名单,符合条件的相关操作不再产生告警。单击<span class="ph uicontrol">添加到规则白名单</span>,在弹出的对话框中勾选白名单可选属性,单击<span class="ph uicontrol">确定</span>。</span>
<div class="itemgroup info">
<img class="image" id="alarmlog__image_pzb_54r_4sb" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-1dd291f997d8.png" width="400">
</div>
</li><li class="li step stepexpand">
<span class="ph cmd">对于统计规则产生的告警,在<span class="keyword wintitle">告警日志详细</span>页面右下角单击<span class="ph uicontrol">统计数据</span>,可查看此次告警的审计记录。</span>
<div class="itemgroup info">
<img class="image" id="alarmlog__image_wzx_v4r_4sb" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-18ebd4099cf4.png" width="700">
</div>
</li></ol></section>
提交成功!非常感谢您的反馈,我们会继续努力做到更好!