Evaluates whether SQL explorer and audit is enabled for PolarDB clusters. Clusters with this feature enabled are evaluated as Compliant.
Scenarios
Enabling SQL explorer and audit also activates Database Autonomy Service (DAS) Professional Edition, which provides search, SQL explorer, security auditing, traffic playback, and stress testing. These features help you obtain SQL statement details, troubleshoot performance issues, identify high-risk data sources, and verify whether a cluster needs to be scaled out to handle traffic spikes.
Risk level
Default risk level: medium.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
- If the SQL explorer and audit feature is enabled for each PolarDB cluster, the evaluation result is Compliant.
- If the SQL explorer and audit feature is disabled for a PolarDB cluster, the evaluation result is Incompliant. To remediate an incompliant configuration, see Incompliance remediation.
Rule details
| Item | Description |
| Rule name | polardb-cluster-enabled-auditing |
| Rule identifier | polardb-cluster-enabled-auditing |
| Tag | PolarDB, SQLAuditing, and AuditBaseline |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Evaluation frequency | Interval of 24 hours |
| Supported resource type | PolarDB cluster |
| Input parameter | None. |
Incompliance remediation
Enable the SQL explorer and audit feature for a PolarDB cluster. For more information, see SQL Explorer.