3578156 - Datasphere Audit Log

Datasphere Audit log configuration:

• Enable audit logging for spaces
• Enable audit logging for individual database schemas
• Audit log retention
• Where auditing logs is stored
• Viewing auditing logs
• Delete Audit Logs
• Export Audit Logs
• Monitor Database Operations with Audit Logs

SAP Datasphere

Audit logs are records of read or change actions performed in the database. They allow you to see who performed which action at which point in time.
Space Administrators can enable audit logs for read or change actions in their space.
Administrators can then get an overview of space audit logs and delete them if needed (for example to free up disk space).
See more in - Audit Logging

1. Enable audit logging for spaces:
   1. To enable audit logs for specific Spaces in SAP Datasphere:
   2. Go to Space Management by clicking on the icon on the left-side menu.
   3. Select the Space in which you want to enable the audit logs, and click on the Auditing tab.
   See Enable Audit Logging
   
   
2. Enable audit logging for individual database schemas:
   To enable audit logs for individual database schemas in SAP Datasphere:
    1. Go to Space Management by clicking on the icon on the left-side menu and select the Space in which you want to enable the logs.
    2. Navigate to the Database Access tab, where you can choose to expose data for consumption, as well as find (and create) the         database users assigned to your Space.
    3. Now, simply select the database user you wish to enable audit logs for.
    4. Here you can check the Enable Audit Log for Read or Change Operations checkboxes and set the retention time for the same.
    See more in - Set Up and Review Audit Logs in SAP Datasphere
   
   
3. Audit log retention
   You can set the retention time in days. The default is 30 days, the minimum retention time is 7 days, and the maximum retention time is 10 000 days.
   See more in - Set Up and Review Audit Logs in SAP Datasphere
   
   
4. Where auditing logs is stored:
   If auditing has been enabled, entries of all SAP Datasphere related objects are saved in an SAP HANA Cloud, SAP HANA database audit log. These logs don’t include the objects of the database access schemas, like open SQL schemas, for example.
   The audit logs are saved as external data, for example, as a view. You can now select these audit logs in the Data Builder. The data is located in the AUDIT_LOG view of the DWC_AUDIT_READER schema.

        The audit logs of the database analysis user are saved separately in the ANALYSIS_AUDIT_LOG view.

        See more in - Set Up and Review Audit Logs in SAP Datasphere

• View auditing logs:
  1. Go to Configuration on the bottom right of your screen, and navigate to the Audit tab.
  2. Choose the space from the drop-down list that contains the audit logs you wish to see.
  3. If you want to keep the audit log entries generated for your space, you can export them before the space is deleted.   

         For more information. See Export Audit Logs.

1. Delete Audit Logs
   You can delete audit logs for:
   1. Spaces for which auditing is enabled. For each space, you can delete separately all the audit log entries recorded for read operations and all the audit log entries recorded for change operations. All the entries recorded before the date and time you specify are deleted.
   2. All read audit logs recorded for all database analysis users. They are grouped together into the audit policy DWC_ANALYSIS_USERS_AUDIT_ALL.
   See - Delete Audit Logs
   
   
2. Export Audit Logs:
   You can export audit log entries before they are deleted.
   If you want to keep the audit log entries generated for your space, you can export them before they are automatically deleted by these actions:
   1. deleting a space
   2. deleting a database user (open SQL schema)
   3. disabling an audit policy for a space
   4. disabling an audit policy for a database user (open SQL schema) and unassigning an HDI container from a space.
      For more see - Export Audit Logs.
      
      

• Monitor Database Operations with Audit Logs:
  Monitor the read and change actions (policies) performed in the database with audit logs, and see who did what and when.
  If Space Administrators have enabled audit logs to be created for their space (see Enable Audit Logging), you can get an overview of these audit logs. You can do analytics on audit logs by assigning the audit views to a dedicated space and then work with them in a view in the Data Builder.
  For more see - Monitor Database Operations with Audit Logs.
  
  

See a high level summary in - Set Up and Review Audit Logs in SAP Datasphere.

3481952 - FAQ - Audit log storage in SAP Datasphere.

3416979 - Datasphere Audit Log Data occupies more storage considering the number of entries in system configuration.

KBA , DS-SM , Space Management , DS-SEC , Security (Users, Roles) , How To