Audit Logging


Audit logging in dbWatch Control Center provides traceability and accountability for actions taken by users and the system. It is designed to help administrators:


Enabling Audit Logging

Audit logging is an optional feature that can be enabled via configuration. It is disabled by default but can be activated depending on your organization’s needs.

To enable audit logging:

1. Navigate to your Control Center configuration settings
2. Locate the audit logging options under the system or domain controller setup
3. Set the desired log level (see below)

More detailed configuration steps are available on the separate auditing wiki page.

Read more:
Audit Configuration Details


Available Logging Levels

dbWatch supports three distinct levels of audit logging:

Level Description
0 No logging (default)
1 Logs only SQL statements and operations triggered by direct user actions
2 Logs all SQL statements, including background jobs, scheduled tasks, and system-initiated operations

> Recommendation: For production environments, start with level 1. Use level 2 only for short periods or detailed investigations, as it generates more log volume.


Audit Log Storage

Audit logs can be monitored externally using tools like Splunk, ELK stack, or other SIEM systems.


Use Cases


Recommendations


Related Topics


For help configuring audit logging, integrating with external logging systems, or designing log rotation policies, contact:
support@dbwatch.com