The risk log provides a detailed list of every SQL statement identified as a potential risk. Each entry includes details such as the SQL statement, capture time, risk type, rule name, risk level, database user, and client IP. This topic describes how to query risk logs using criteria such as time range, client IP, and risk level.
Prerequisites
You have added a database asset to a Database Audit D100 instance and deployed the agent on the database server. For more information, see Manage Database Assets and Install Agent.
View risk logs
- Log on to the Database Audit system.For more information, see Log on to the Database Audit System.
In the left-side navigation pane, choose .
Select search criteria, such as asset name and time range, and then click Query.
The query results appear in a table with columns such as No., Statement Content, Risk Level, Risk Type, Rule Name, Capture Time, Client IP, Database User, Response Time (μs), and Execution Result. You can also filter the results using criteria such as client IP, risk level, risk type, and rule name.
Click an entry in the Statement Content column to view statement details.
The details include Access Source Information, Application Identity Information, SQL Statement Information, Affected Objects, SQL Statement, and SQL Template.
Click an entry in the Rule Name column to view rule details.