The EDB Postgres Advanced Server must initiate support of session auditing upon startup.
An XCCDF Rule
Description
<VulnDiscussion>Session auditing is used when a user's activities are under investigation. To ensure all activity is captured during those periods when session auditing is in use, it must be in operation for the entire time the DBMS is running.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-224138r879562_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
If EDB Auditing is not enabled, execute the following SQL as enterprisedb:
ALTER SYSTEM SET edb_audit = csv;
SELECT pg_reload_conf();
or