DISABLE SECURITY_AUDIT
Valid in: SQL, ESQL, OpenAPI, ODBC, JDBC, .NET
The DISABLE SECURITY_AUDIT statement enables the security administrator to turn off security logging for the specified type of security event. To turn security logging on, use the ENABLE SECURITY_AUDIT statement.
The DISABLE SECURITY_AUDIT statement has the following format:
[EXEC SQL] DISABLE SECURITY_AUDIT audit_type | ALL;
audit_type
Specifies the type of information to not log, as follows:
ALARM
Disables logging of all security events generated by create security_alarm statements issued on tables.
CLIENT_INFO
Disables logging of the client information string for connecting and disconnecting from the DBMS Server. Example string: user='ingres',host='myhostname',tty='2',pid=25108.
DATABASE
Disables logging of all types of access by all users to all database objects, including use of the ckpdb, rollforwarddb, and auditdb utilities.
DBEVENT
Disables logging of all create dbevent, raise dbevent, register dbevent, remove dbevent, and drop dbevent statements.
LOCATION
Disables logging of all access to location objects (create location, alter location and drop location statements) by all users.
PROCEDURE
Disables logging of all access to database procedures (create procedure and drop procedure statements and procedure execution) by all users.
QUERY_TEXT
Disables logging of all types of access by all users to all the detail information for querytext events.
RESOURCE
Disables logging of all types of access by all users to violations of resource limits.
ROLE
Disables logging of role events (set role statement with -r flag)
ROW
Disables logging of all types of access by all users to all row-level events.
RULE
Disables logging of rule events (create rule, drop rule, and firing of rules)
SECURITY
Disables logging of all types of access by all users to all security-related objects.
SEQUENCE
Disables logging of all types of access by all users to all sequence objects.
TABLE
Disables logging of all types of access by all users to all tables.
USER
Disables logging of all changes to user and group information, including runtime verification of user and group names.
VIEW
Disables logging of all types of access by all users to all views.
ALL
Disables logging of all types of security events.
After disabling security logging, the DBMS Server continues to log security events for users that have the AUDIT_ALL privilege. (To disable auditing for users that are assigned the AUDIT_ALL privilege, use Actian X configuration tools, described in the System Administrator Guide.)
Embedded Usage
You cannot use host language variables in an embedded DISABLE SECURITY_AUDIT statement.
Permissions
You must have MAINTAIN_AUDIT privilege and be connected to the iidbdb database.
Locking
The DISABLE SECURITY_AUDIT statement locks pages in the iisecuritystate system catalog.
Related Statements
CREATE SECURITY_ALARM
DROP SECURITY_ALARM
ENABLE SECURITY_AUDIT
Last modified date: 04/26/2024