Data Access Audit
Overview
The Data Access Audit tab provides a detailed log of all actions performed within the Data Access Management module for Snowflake. It captures every change related to users, roles, permissions, and metadata objects, offering full visibility into access management activities.
Each audit entry records who made the change, what was modified, when it occurred, and the source of the change. This enables precise traceability for compliance, governance, and operational accountability.
Audit data is available across multiple levels, including instance, connector, users, roles, and permission entities such as warehouses, databases, schemas, tables, and columns.
Instance-Level Audit
Date: Timestamp of the action
Audit User: The User who performed the action
Action: Performed action.
Description: Summary of the change
Connector-Level Audit
Date: Timestamp of the action
Audit User: The User who performed the action
Connection Name: Name of the connector involved
Action: Performed action
Description: Summary of the change
Roles-Level Audit
Date: Displays when the role-related action occurred.
Role: Shows the name of the role impacted.
Audit User: Identifies the user who performed the action.
Action: Indicates the type of change made to the role.
Source: Specifies the origin system where the change occurred.
Description: Provides additional details about the role change.
User-Level Audit
Date: Displays when the user-related action occurred.
User ID: Shows the identifier of the user involved in the change.
Audit User: Identifies who performed the action.
Action: Indicates the nature of the change made to the user.
Source: Specifies the origin of the change.
Description: Describes what was modified for the user.
Warehouses-Level Audit
Date: Displays the date and time of the warehouse-related activity.
Warehouse: Shows the name of the impacted Snowflake warehouse.
Audit User: Identifies the user who performed the change.
Action: Indicates the type of action taken.
Source: Specifies the origin of the action.
Description: Provides a summary of the warehouse-related change.
Database Permissions-Level Audit
Date: Indicates when the database permission change occurred.
Connector: Displays the source connector involved.
Database: Shows the database where the permission was modified.
Roles: Lists roles affected by the permission change.
Privileges: Displays the specific privileges that were granted or revoked.
Audit User: Identifies the user who made the change.
Action: Indicates what permission-related action was taken.
Source: Specifies the origin of the change.
Description: Provides additional details about the database permission change.
Schema Permissions-Level Audit
Date: Indicates when the schema permission change occurred.
Connector: Displays the connector associated with the change.
Schema: Shows the schema where access was modified.
Roles: Lists the roles involved in the permission update.
Privileges: Displays the exact privileges granted or revoked.
Audit User: Identifies the user who performed the action.
Action: Describes the nature of the permission change.
Source: Specifies the origin system.
Description: Summarizes the change made at the schema level.
Table Permissions-Level Audit
Date: Indicates the date of the table-level permission change.
Connector: Shows the connector from which the change originated.
Schema: Displays the schema containing the affected table.
Table: Identifies the specific table involved in the change.
Roles: Lists the roles impacted by the permission update.
Privileges: Displays granted or revoked permissions.
Audit User: Identifies the user who performed the action.
Action: Indicates what kind of change occurred.
Source: Specifies the origin of the change.
Description: Provides context on the table permission update.
Tags-Level Audit
Date: Displays the timestamp of the tag-related activity.
Connector: Indicates the connector from which the tag change originated.
Schema: Indicates the schema associated with the tag.
Tag: Identifies the name of the tag that was created or updated.
Audit User: Specifies who performed the tag-related change.
Action: Describes the type of tag operation performed.
Source: Displays the origin system of the tag action.
Masking Policies-Level Audit
Date: Indicates when the masking policy change occurred.
Connector: Shows the connector where the policy was modified.
Schema: Displays the schema where the policy is defined.
Policy Name: Identifies the name of the affected masking policy.
Policy SQL: Shows the SQL expression associated with the policy.
Audit User: Indicates who made the change to the policy.
Action: Specifies the type of policy-related change.
Source: Displays the origin of the change.
Search Description: Provides context or description of the policy update.
Row Access Policies-Level Audit
Date: Displays the date and time when the row access policy was modified.
Connector: Indicates the source connector where the change occurred.
Schema: Shows the schema in which the policy is defined.
Policy Name: Displays the name of the row access policy.
Policy SQL: Shows the SQL logic applied in the row access policy.
Audit User: Identifies the user who performed the action.
Action: Indicates the type of policy-related operation.
Source: Specifies the origin of the change.
Description: Provides context or notes about the policy update.
Tag Associations-Level Audit
Date: Displays the timestamp of the tag association change.
Connector: Indicates the connector where the tag association was modified.
Schema: Displays the schema that contains the tagged object.
Object Type: Identifies the type of object (e.g., table, column) to which the tag is applied.
Object: Displays the specific object name associated with the tag.
Tag: Shows the name of the tag that was associated or modified.
Tag Value: Lists the value assigned to the tag.
Audit User: Identifies the user who made the change.
Action: Describes the tag-related operation performed.
Source: Specifies the origin of the change.
Description: Provides additional context about the tag association change.
Masking Policies Associations-Level Audit
The Masking Policies Associations tab displays a record of masking policy associations and updates applied within Redshift. It helps track policy enforcement across metadata objects and supports auditing and governance efforts.
Attributes:
Date: Shows when the masking policy was associated or last updated.
Connector: Displays the connector where the policy association took place.
Schema: Indicates the schema of the object affected by the masking policy.
Object Type: Specifies the type of metadata object (e.g., Table Column) linked to the policy.
Object: Displays the name of the object with the applied masking policy.
Policy Name: Shows the name of the masking policy associated with the object.
Audit User: Identifies the user who performed the action.
Action: Indicates the nature of the change (e.g., associated, updated, removed).
Source: Specifies the origin system where the change occurred.
Description: Provides details about the masking policy association.
Row Access Policies Associations-Level Audit
Date: Displays the date of the row access policy association or change.
Connector: Indicates the connector involved in the change.
Schema: Shows the schema where the table resides.
Table: Displays the name of the table associated with the row access policy.
Row Access Policy: Shows the name of the associated row access policy.
Audit User: Identifies the user who performed the action.
Action: Describes the operation performed.
Source: Specifies the origin system where the change occurred.
Description: Provides additional context about the row access policy association.
Copyright © 2025, OvalEdge LLC, Peachtree Corners GA USA
Last updated
Was this helpful?