This topic describes how to collect RDS SQL audit logs by using the Log Service console.

Prerequisites

Procedure

  1. Log on to the Log Service console.
  2. In the Import Data section, select RDS SQL Audit - Cloud Products.
  3. In the Specify Logstore step, select a project and Logstore, and click Next.
  4. In the Specify Data Source step, complete RAM authorization, enable the data shipping feature, and then click Next.
    Note
    • If you have not authorized Log Service to ship logs, click Authorize next to RAM, and complete the authorization as prompted.
    • The destination ApsaraDB RDS instance may not appear on the prompted page or you may fail to enable the data shipping feature. This issue occurs when your ApsaraDB RDS instance does not meet the required conditions. For more information about how to check whether your ApsaraDB RDS instance meets the required conditions, see the Prerequisites section.
    Specify Data Source tab
  5. In the Configure Query and Analysis step, click Next.
    By default, the indexing feature is enabled for the Logstore where RDS SQL audit logs are stored. Indexes are configured for these audit logs. You can modify indexes as needed. For more information, see Configure indexes.

What to do next

After RDS SQL audit logs are collected by Log Service, you can search, analyze, download, ship, and transform these logs. You can also configure alerts for these logs. For more information, see Common operations on logs of Alibaba Cloud services.