Database Activity Monitoring (DAM) policies : PCI, SOX, and HIPAA alert policies : Configuring PCI, SOX and HIPAA policies
 
Configuring PCI, SOX and HIPAA policies
Some regulatory compliance reports require you to set either Object Audit Options or User Audit Options for the corresponding policy group item.
1. Go to Policy > DAM Alert Policies.
2. For View, select PCI Policies, Sox Policies, or HIPAA Policies.
3. Click the policy name.
The Edit Alert Policy page for the policy is displayed.
4. Enter the following information if necessary.
a. Enter a description.
b. Select Enable to enable the policy.
5. Select one of the following severity options from the dropdown list.
Informational (default, lowest severity level)
Cautionary
Minor
Major
Critical (highest severity level)
6. For generating reports, set Object Audit Options or User Audit Options, if required. See “Selecting which tables FortiDB tracks for PCI, SOX and HIPAA reports (Object Audit Options)” and “Select users to audit for PCI and SOX reports (User Audit Options)”.
See also
Selecting which tables FortiDB tracks for PCI, SOX and HIPAA reports (Object Audit Options)
Select users to audit for PCI and SOX reports (User Audit Options)
PCI, SOX, and HIPAA reports