6.9 Ensure All Statements and Connections are Logged - audit_log_policy

Information

With the audit_log_policy setting the amount of information which is sent to the audit log is controlled. For versions prior to 5.6.20 it must be set to log logins and connections. For 5.6.20 and later audit_log_connection_policy and audit_log_statement_policy may be used in place of audit_log_policy.

Rationale:

If this setting is set to QUERIES, CONNECTIONS or NONE then either connections or queries are not written to the audit log file.

Solution

Add the following line to the [mysqld] section of the MySQL configuration file and restart the MySQL service:

audit_log_policy=ALL

Default Value:

ALL

See Also

https://workbench.cisecurity.org/files/3848