Configure whitelists

更新时间:
复制 MD 格式

When an audit record matches an enabled user-defined rule, Database Audit triggers an alert. You can add whitelists to prevent alerts for trusted activities. If an audit record matches a whitelist, Database Audit does not generate an alert, even if the record also matches a user-defined rule. This topic describes how to add a whitelist and apply it to a user-defined rule in Database Audit.

Add whitelist

  1. Log on to the Database Audit system.

    For more information, see Log on to the Database Audit system.

  2. In the left-side navigation pane, choose Rule Settings > Security Rules.

  3. Click the Whitelist Management tab.

  4. On the Whitelist Management tab, click Add.

  5. In the Add Whitelist panel, configure the whitelist.

    Name: Enter a name for the whitelist.

    Description: Enter a description for the whitelist.

    whitelist rule: For descriptions of parameters such as Client, Server, Action, Result, and Others, see Rule configuration parameter descriptions.

  6. Click Save.

    After you add the whitelist, it appears on the Whitelist Management tab. You can click Edit or Delete in the Actions column.

Apply whitelist to a user-defined rule

  1. On the Security Rules page, click the Rule Management tab.

  2. Find the target rule and click the number in the Whitelist Count column.

  3. In the Set Whitelist of Rule <Rule Name> dialog box, select the whitelists to apply, and set their Status to enabled.

Related documents

For information about configuring security rules for a database, see Configure security rules.