The security audit (new version) feature allows you to add trusted accounts, IP addresses, and more to a whitelist. Database Autonomy Service (DAS) skips security audits and anomaly detection for these whitelisted entries, reducing false alerts. This topic describes how to add, modify, and delete whitelist entries.
Prerequisites
The security audit (new version) feature must be enabled. For more information, see Enable security audit (new version).
Features
-
After you add, modify, or delete a whitelist entry, the new configuration takes effect within 1 minute.
-
When you handle audit or risk alerts, whitelisted accounts, IP addresses, and other entities are identified as such.
Add a whitelist
To exclude certain accounts, IP addresses, or CIDR blocks from security audits and detection, add them to the whitelist.
Log on to the DAS console.
-
In the left-side navigation pane, click Security Center > Security Audit.
-
On the Security Audit page, click the Whitelist tab.
Edit or delete a whitelist
Log on to the DAS console.
-
In the left-side navigation pane, click Security Center > Security Audit.
-
On the Security Audit page, click the Whitelist tab.
-
Find the whitelist entry and click Edit or Delete in the Actions column.