Applying for a Database Audit Instance

Impact on the System

Database audit works in out-of-path mode, which neither affects user services nor conflicts with the local audit tools.

Procedure

1. Log in to the management console.
2. Select a region, click , and choose Security > Database Security Service. The Dashboard page is displayed.
3. In the upper right corner, click Apply for Database Audit.
4. On the Apply for Database Audit page, select an AZ and a Type.
   • AZ: If resources are sold out in an AZ, Sold out in this AZ will be displayed for the AZ. In this case, select another AZ.
   • Type: For details about the supported editions, see Editions.

5. Set database audit parameters. See Table 1.

   Table 1 Parameters

   Parameter	Description	Example Value
   VPC	You can select an existing VPC, or click View VPC to create one. NOTE: Select the VPC of the node (application or database side) where you plan to install the agent. To change the VPC of a DBSS instance, unsubscribe from it and apply for a new one. For more information about VPC, see Virtual Private Cloud User Guide.	vpc-sec
   Security Group	The security group configured for the instance is displayed on the page. Once a security group is selected for an instance, the instance is protected by the access rules of this security group. For more information about security groups, see Virtual Private Cloud User Guide.	sg
   Subnet	The Subnet drop-down list displays all available subnets. For more information about subnets, see Virtual Private Cloud User Guide.	public_subnet
   Instance Name	Custom name of the instance	DBSS-test

6. Confirm the configuration and click Next.
7. On the details confirmation page, you can click .

   On the Instances page, you can view the created database audit instance.

   If the Status is Running, you have successfully applied for the database audit instance.