Fortinet FortiDB user manual

User manual for the device Fortinet FortiDB

Device: Fortinet FortiDB
Category: Computer Monitor
Manufacturer: Fortinet
Size: 1.93 MB
Added : 9/13/2013
Number of pages: 56
Print the manual

Download

How to use this site?

Our goal is to provide you with a quick access to the content of the user manual for Fortinet FortiDB. Using the online preview, you can quickly view the contents and go to the page where you will find the solution to your problem with Fortinet FortiDB.

For your convenience

If looking through the Fortinet FortiDB user manual directly on this website is not convenient for you, there are two possible solutions:

  • Full Screen Viewing - to easily view the user manual (without downloading it to your computer), you can use full-screen viewing mode. To start viewing the user manual Fortinet FortiDB on full screen, use the button Fullscreen.
  • Downloading to your computer - You can also download the user manual Fortinet FortiDB to your computer and keep it in your files. However, if you do not want to take up too much of your disk space, you can always download it in the future from ManualsBase.
Fortinet FortiDB User manual - Online PDF
Advertisement
« Page 1 of 56 »
Advertisement
Print version

Many people prefer to read the documents not on the screen, but in the printed version. The option to print the manual has also been provided, and you can use it by clicking the link above - Print the manual. You do not have to print the entire manual Fortinet FortiDB but the selected pages only. paper.

Summaries

Below you will find previews of the content of the user manuals presented on the following pages to Fortinet FortiDB. If you want to quickly view the content of pages found on the following pages of the manual, you can use them.

Abstracts of contents
Summary of the content on the page No. 1

Utilities User Guide
FortiDB
Version 3.2
www.fortinet.com

Summary of the content on the page No. 2

FortiDB Utilities User Guide Version 3.2 December 19, 2008 15-32000-81369-20081219 © Copyright 2008 Fortinet, Inc. All rights reserved. No part of this publication including text, examples, diagrams or illustrations may be reproduced, transmitted, or translated in any form or by any means, electronic, mechanical, manual, optical or otherwise, for any purpose, without prior written permission of Fortinet, Inc. Trademarks ABACAS, APSecure, FortiASIC, FortiBIOS, FortiBridge, FortiClient, FortiD

Summary of the content on the page No. 3

Table of Contents Table of Contents FortiDB MA Utilities ................................................................................................. 3 Auto Discovery......................................................................................................... 4 DB2.....................................................................................................................................6 MS-SQL ...........................................................................

Summary of the content on the page No. 4

Table of Contents Report Body Columns .................................................................................................44 Abnormal or Unauthorized Changes to Data Report (AUC).............................................45 COBIT Objectives and Setup Requirements ..............................................................45 Report Body Columns .................................................................................................45 Abnormal Use of Service Accounts Rep

Summary of the content on the page No. 5

FortiDB MA Utilities FortiDB MA Utilities FortiDB MA provides several utilities to help you use other modules: • Auto Discovery to ease the burden of manually setting up database connections • Connection Summary to show which database connections are Open or are Open and Running • Rule Chaining to trigger one rule based upon another • Report Manager for custom, offline reports FortiDB Version 3.2 Utilities User Guide 15-32000-81369-20081219 3

Summary of the content on the page No. 6

Auto Discovery Auto Discovery FortiDB MA provides the ability to search for, and establish connections to, databases on your network. Rather than manually entering all of the connection information, you can have FortiDB MA automatically discover it for you. Selecting Addresses for Auto-Discovery In order to use this feature: 1 Select the Database->New menu, and click the Auto Discovery button on the Create New Database Connection screen. Or you can just select Auto Discovery from the Main p

Summary of the content on the page No. 7

Auto Discovery Selecting Non-Standard Ports for Auto-Discovery 5 Click the Begin Discovery button. Results from Auto-Discovery FortiDB Version 3.2 Utilities User Guide 15-32000-81369-20081219 5

Summary of the content on the page No. 8

DB2 Auto Discovery Discovered Database Information Populating Connection Form The process will automatically return: • Database Type and version • IP address (with port if applicable) • Database name/instance Once the Auto Discovery list is returned, you can create, by clicking the Add button on the Discovered Database Applications screen, the database connections you wish to assess or monitor. The additional required and recommended fields will need to be completed manually. (See the FortiD

Summary of the content on the page No. 9

Auto Discovery MS-SQL • Destined for port 1434 Note: FortiDB MA sends a packet to port 1434, which MSSQL uses in order to return information about itself such as instance name, version, etc. (Even though this is an MSSQL-specific port number, FortiDB MA uses it for all Auto-Discovery- related transmissions.) • Originating from the port whose number is specified in the dss.udpport property in dssConfig.properties. FortiDB Version 3.2 Utilities User Guide 15-32000-81369-20081219 7

Summary of the content on the page No. 10

MS-SQL Connection Summary Connection Summary The Connection Summary utility allows you to see, by FortiDB MA module and in one place, a dashboard view of all of your database connections. Connection Summary Button Connection Summary Output FortiDB Version 3.2 Utilities User Guide 8 15-32000-81369-20081219

Summary of the content on the page No. 11

Rule Chaining MS-SQL Rule Chaining 1 The Rule Chaining module allows you to associate rules so that one, the source 2 rule, can influence the execution of another, the target rule. Both rules are established with the same target database. Rule Chaining Setting Screen FortiDB MA offers two types of chained-rule pairs: • Rule pairs in which there are no parameters passed. (In this case, you may use Guarded Items from Privilege Monitor (PM), Metadata monitor (MM), Content Monitor (CM), and Use

Summary of the content on the page No. 12

MS-SQL Rule Chaining Configuring a Rule Chain for a Specific Target Database Connection You can perform the following: • Choose the target database (the database you want to run the rules against) • Add item (new chain) • Delete item • View/Modify item (make changes to an existing chain) • Enable item (a chain does not have to be enabled when it is created) • Disable item Rule Chaining Setting Screen FortiDB Version 3.2 Utilities User Guide 10 15-32000-81369-20081219

Summary of the content on the page No. 13

Rule Chaining Chaining with Parameterized User-Defined Rules After the database has been specified and you have clicked on [Add Item], you will be presented with the Create Rule Chaining Settings page. Here, you need to: • Name the Rule Chain • Select the policy you want to use as the Source Rule • Select the target rule (Chained Rule) you want to execute, once the first rule had been violated. • Specify whether you want the chain to run immediately upon source-rule violation or not. Run Imme

Summary of the content on the page No. 14

Chaining with Parameterized User-Defined Rules Rule Chaining General PUDR Steps The general step for creating a chain that uses a PUDR are: 1 In UBM, define an Object, User, or Session policy that will be your Source Rule. 2 In UBM, define a PUDR that will be your Target Rule 3 In the Rule Chaining module, define a chain which associates the UBM policy and the PUDR. PUDR Process Parameterized User-Defined Rule Flow Diagram The PUDR process involves these steps. 1 The source rule is violated a

Summary of the content on the page No. 15

Rule Chaining Chaining with Parameterized User-Defined Rules PUDR Eligible Rules Disabled Parameter Checkboxes If the chosen target rule cannot accept parameters, they will be grayed out. Validating the PUDR before Saving If one or more variables selected do not appear in the PUDR, FortiDB MA presents a warning message. FortiDB Version 3.2 Utilities User Guide 15-32000-81369-20081219 13

Summary of the content on the page No. 16

Chaining with Parameterized User-Defined Rules Rule Chaining Chaining the UBM Policy and PUDR Together Associating a Source Rule That Can Pass parameters with a PUDR Example of Chaining to a PL/SQL-based PUDR In this Oracle PL/SQL kill-session example, we: 1 Create a DB user, BAD_GUY, whose session we will monitor, in our Oracle target database. Item Setting for Session Policy FortiDB Version 3.2 Utilities User Guide 14 15-32000-81369-20081219

Summary of the content on the page No. 17

Rule Chaining Chaining with Parameterized User-Defined Rules Policy Settings for Suspicious Login Time 2 Create a UBM Session Policy, our Source rule, in order to monitor BAD_GUY and generate an alert to trigger our Target rule, a PUDR. We will pass the Session ID from the Source to the Target rule. 3 Create a Target PUDR, in the UBM module, which will contain the following kill- session code. That code, in turn, will accept our passed Session ID parameter (shown in red): FortiDB Version 3.2

Summary of the content on the page No. 18

Chaining with Parameterized User-Defined Rules Rule Chaining DECLARE v_str VARCHAR2(80) := 'ALTER SYSTEM KILL SESSION '||chr(39); v_statementVARCHAR2(80); sesid NUMBER; serial NUMBER; usernameVARCHAR(50); osuser VARCHAR(50); machine VARCHAR(50); program VARCHAR(50); BEGIN SELECT sid, serial#,username,osuser,machine,program INTO sesid,serial,username,osuser,machine,program FROM v$session WHERE audsid =$sessionid; v_statement := v_str||sesid||','||serial||chr(39)||

Summary of the content on the page No. 19

Rule Chaining Chaining with Parameterized User-Defined Rules Chained-Rule Alerts: (UBM Session Policy and PUDR) 5 Get an alert when the (the Session Policy) Source rule is violated. 6 Get another alert when the chained PUDR executes and, in this case kills the session of BAD_GUY. 7 And, in the Alert Details dialog, display DB user name, OS user name, machine name, and source-program name as shown above. Resulting Killed Session 8 Notice that our SQLPlus session has been killed Alert Behavior T

Summary of the content on the page No. 20

Chaining with Parameterized User-Defined Rules Rule Chaining SELECT username, osuser, terminal FROM v$session WHERE osuser = '$osusername' Multiple Source-Rule-Violation Behavior When using the Rule Chaining feature with PUDRs, you might expect a target- policy alert for each source-policy alert. However, unless there is a change in the passed parameter, there will be only one PUDR alert--despite multiple source- policy alerts. For example, assume you have a session policy for your source rule


Alternative user manuals
# User manual Category Download
1 Sony BVM-L170 User manual Computer Monitor 7
2 Sony DDM-2802CNU User manual Computer Monitor 1
3 Sony BVM-D20F1U, BVM-D20F1E, BVM-D20F1A, BVM-D24E1WU, BVM-D24E1WE, BVM-D24E1WA, BVM-D32E1WU, BVM-D32E1WE, BVM-D32E1WA User manual Computer Monitor 15
4 Sony 500A3WE User manual Computer Monitor 8
5 Sony CPD-17SF2 User manual Computer Monitor 10
6 Sony AEP MODEL CPD-E200E User manual Computer Monitor 9
7 Sony CPD-G400 User manual Computer Monitor 9
8 Sony CPD-E220E User manual Computer Monitor 5
9 Sony 500A3WJ User manual Computer Monitor 3
10 Sony CPD-110GS User manual Computer Monitor 1
11 Sony BVM-D SERIES BVM-D14H1E User manual Computer Monitor 14
12 Sony CPD-100SFT User manual Computer Monitor 5
13 Sony DELUXEPRO SDM-X93 User manual Computer Monitor 21
14 Sony CPD-G400P User manual Computer Monitor 4
15 Sony CPD-110EST User manual Computer Monitor 9