Audit

Overview

All activities within QueryPie are recorded in audit logs. User and administrator login/logout, permission grants and revocations, access to databases, servers, and Kubernetes, query or command execution, resource or security configuration changes, and all activity history occurring in QueryPie and access-controlled resources are subject to logging.

Available Features

Audit Log Export: Audit logs can be extracted and saved as files through the Audit Log Export menu.
Report Generation: QueryPie data status can be output in report format through the Report menu.
Audit Log Viewing: Real-time log viewing, searching, and filtering are available through individual log pages under the Audit menu.

Types of Auditable Logs

Logs stored in real-time can be checked in the list within individual log pages. (Sorted by latest first)
Logs can be searched or filtered by specific column values.
Clicking on a specific log in the list allows you to check detailed information in a Drawer.

The types of auditable logs vary depending on the license you have, and the types of logs provided by license are as follows:

Common Logs	DAC-Only Logs	SAC-Only Logs	KAC-Only Logs
General User Access History Activity Logs Admin Role History Workflow Logs Reverse Tunnels	Databases DB Access History Query Audit Running Queries DML Snapshot Account Lock History Access Control Logs	Servers Server Access History Command Audit Session Logs Session Monitoring Access Control Logs Server Role History Account Lock History	Kubernetes Request Audit Pod Session Recordings Kubernetes Role History

Common Logs

DAC-Only Logs

SAC-Only Logs

KAC-Only Logs

General

User Access History
Activity Logs
Admin Role History
Workflow Logs
Reverse Tunnels

Databases

DB Access History
Query Audit
Running Queries
DML Snapshot
Account Lock History
Access Control Logs

Servers

Server Access History
Command Audit
Session Logs
Session Monitoring
Access Control Logs
Server Role History
Account Lock History

Kubernetes

Request Audit
Pod Session Recordings
Kubernetes Role History

1. General

User Access History: User login/logout history
Activity Logs: Resource registration and configuration change history performed by administrators
Admin Role History: Administrator permission grant, change, and revocation history
Workflow Logs: Status change history (request, approval, rejection, etc.) for workflow type-specific tasks
Reverse Tunnels: Overall monitoring of currently connected reverse tunneling sessions (Reverse Tunnel Agent monitoring)

2. Databases

DB Access History: Connection and disconnection history
Query Audit: Completed query execution history
Running Queries: Currently executing queries
DML Snapshot: Before and after data records for INSERT/UPDATE/DELETE query execution completion (separate configuration required for recording)
Account Lock History: Connection lock history due to password failures and long-term inactivity
Access Control Logs: Connection access permission grant and revocation history

3. Servers

Server Access History: Server connection and disconnection history
Command Audit: Completed command execution history
Session Logs: Individual session history and session replay functionality
Session Monitoring: Overall monitoring of currently connected sessions (administrators can force terminate sessions when necessary)
Access Control Logs: Server access permission grant and revocation history through Direct Permission and Workflow
Server Role History: Server access permission grant and revocation history through Role menu
Account Lock History: Server access account lock history

4. Kubernetes

Request Audit: Kubernetes API server call history
Pod Session Recordings: Behavior recording history of Pod Exec and other connection sessions
Kubernetes Role History: Kubernetes access permission grant and revocation history