MySQL Forums
Forum List  »  Security

Re: Extenral authentication audit
Posted by: Georgi Kodinov
Date: July 11, 2016 02:46AM

Hi Tim,

We don't specifically log data about the user account in the audit log aside from its id of course.

I am guessing that the authentication method a user account uses is not a dynamic property for the individual user accounts.

So I would:
1. Define all of the user account logging in via external authentication
2. Make sure the logins for these user account are audited
3. Make sure all of the ACL statements affecting these user accounts are audited.

Note also that if you are using proxy user accounts to authenticate the external users you would get the proxy_user attribute for the connect event filled in with the proxy_user used.

If you feel that this is not enough and more attributes are needed please file a feature request in bugs.mysql.com with the exact list of attributes you think you need and we will consider it.

Georgi "Joro" Kodinov
MySQL SrvGen team lead
Plovdiv, Bulgaria

Options: ReplyQuote


Subject
Views
Written By
Posted
1364
July 08, 2016 04:03AM
Re: Extenral authentication audit
806
July 11, 2016 02:46AM
716
July 12, 2016 07:54AM
762
July 13, 2016 08:08AM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.