MySQL Enterprise Audit is based on the
and related components:
A server-side plugin named
audit_logexamines auditable events and determines whether to write them to the audit log.
User-defined functions enable manipulation of filtering definitions that control logging behavior.
Tables in the
mysqlsystem database provide persistent storage of filter and user account data.
audit_log_filter_idsystem variable provides information about whether the current session has an audit filter assigned.
Prior to MySQL 5.7.13, MySQL Enterprise Audit consists only of the
audit_log plugin and operates in legacy mode.
See Section 22.214.171.124.3, “Legacy Mode Audit Log Filtering”.