Database activity monitoring (DAM) : Viewing alerts
 
Viewing alerts
The Security Alerts page displays a list of all alerts generated from all databases and their details. You can filter the list using a pre-defined alert group, an alert group that you defined, or by date.
You can also export the list in a number of formats.
You can also export the alert list in several different formats.
Table 10: Security Alerts page columns
Column
Description
ID
FortiDB assigns alert identifiers sequentially.
Type
indicates that a table policy generated the alert
indicates that a table and column policy generated the alert
indicates that a session policy generated the alert
indicates that a user policy generated the alert
indicates that a database query policy generated the alert
indicates that a privilege policy policy generated the alert
indicates that a metadata policy generated the alert
Status
One of the following types of alert status: You can change the alert status from the Alert Summary page.
(Unacknowledged)
(Acknowledged)
(Error Corrected)
(Alert has an annotation created by a FortiDB administrator)
For information on changing the status value, see “Changing the status of and annotating alerts”.
Severity
Severity of the policy that generated the alert: Informational, Cautionary, Minor, Major, or Critical
Received Time
The date and time when FortiDB received the alert
Target
Name of the target database
Source Location
Hostname of source client
Policy Violation & Action
The name of the policy that generated the alert the action that violated the rule
Table 11: Security Alerts page filtering options
 
 
View
Filter alerts based on the alert group, per-defined or user-defined, by select group from View drop-down list.
Search
Click Search / New Group to define search criteria, or click the Edit button to modify search criteria of user-defined group. When you finish search criteria configuration, click the Search button to search alerts. You can also click the Save Group button to save the search criteria to an alert group quickly.
For more information on groups, see “Alert group”.
For information on search criteria configuration, see “Filtering and searching alerts”.
Date Range and Entry Limit
Filters alerts based on the specified date range, and input number for Limit To, then click the Refresh button to refresh alerts.
Click an alert to view its detail below the list. For more information, see “Alert details”.
See also
Changing the status of and annotating alerts
Exporting the alert list as a report
Filtering and searching alerts
Alert details
Alert group