Fortinet FortiDB Alert Report Manager, Setting a Report Schedule, Setting a Timer-based Schedule

Page 22

Alert Report Manager

Report Manager

Report Manager

In order to access the FortiDB MA Report Manager module, click on the Report

Manager link on the left-side navigator on the main FortiDB MA screen.

The FortiDB MA Report Manager module offers:

•Alert Reports to summarize your alert data

•Custom Reports to enable you to design your own reports

Alert Report Manager

Due to the potential for a large number of alerts to accumulate in your system, the Alert Report Manager (ARM) enables you to create reports that organize the alert information. You filter and sort this information by:

•Severity Level1 (critical, informational, etc.)

•Status (handled or not)

•Database connection

•Type of rule (PDR or UDR)

•Guarded Item Name or Description

•Alert-Generated Time or Day

ARM can retrieve historical reports and alerts, thus providing a basis for regulatory or legal compliance. And you can export reports in comma- or tab-delimited format for further enhancements.

Setting a Report Schedule

Schedules are either timer-or calendar-based. For a timer-based schedule, you set a time interval for monitoring. For a calendar-based schedule, you choose to have the monitoring run at a specific day and/or time. (You can also combine the two types and randomize the interval you specify.)

To set up a schedule, use the Set Defaults-> Schedule Settings menu.

Setting a Timer-based Schedule

For a Timer-based Schedule:

1Specify the monitoring Interval or the Time to start scanning

2Click the Set Timer button2 in order to save the settings.

1.Severity levels are user-defined attributes. For example, you can define what 'Critical' means for your organization.

2.By default, reports will run every 24 hours. You must click on the Set Timer button to activate this, however.

	FortiDB Version 3.2 Utilities User Guide
20	15-32000-81369-20081219

Image 22

Contents Utilities User Guide FortiDB Utilities User Guide TrademarksTable of Contents Index FortiDB MA Utilities Auto Discovery Selecting Addresses for Auto-DiscoverySelecting Non-Standard Ports for Auto-Discovery Results from Auto-DiscoveryMS-SQL Discovered Database Information Populating Connection FormMS-SQL Connection Summary Connection Summary Button Connection Summary OutputRule Chaining Setting Screen Rule ChainingRule Chaining Chaining with Parameterized User-Defined Rules Parameterized User-Defined Rule Flow Diagram General Pudr StepsDisabled Parameter Checkboxes Validating the Pudr before SavingItem Setting for Session Policy Example of Chaining to a PL/SQL-based PudrPolicy Settings for Suspicious Login Time Immediate Chained-Rule Alerts UBM Session Policy and Pudr Table Columns That Could Appear in AlertsResulting Killed Session Multiple Source-Rule-Violation Behavior DB ExampleRule Chaining Setting a Timer-based Schedule Setting a Report ScheduleAlert Report Manager Setting a Timer-Based Schedule Deleting a Previously Set Timer ScheduleSetting a Calendar-based Schedule Deleting a Timer ScheduleSetting a Calendar-Based Schedule Setting a Combined ScheduleSetting a Randomized Interval Setting a Randomized IntervalSpecifying Report Parameters Reporting by TimeEnabling Email Recipients ARM Reporting by Time ARM Reporting by Time Calendar Pop-upNew Report Setting Screen top New Reports MenuNew Report Setting Screen bottom Saved and Enabled Report Using the Select Checkbox to Affect Multiple ReportsStatus Menu Status Dialog Activating ARMRunning and Analyzing Reports View Reports Dropdown List on Current Reports ScreenChoosing Summary Report Action Current Report ConfigurationReport Summary Action Summary-Action Output TypesLimitation Report Detailed ActionReport Size Archiving Reports Scheduling Using This FeatureCustom Reports Custom ReportsTime-only Schedule Settings Daily Schedule Settings Monthly Schedule Settings Weekly Schedule SettingsCustomer and Company Information Company Information Dialog Report and Template Generation and ManagementCustom Reports Main Modifying Reports Adding ReportsAdding a Report Modifying a Report Deleting ReportsDeleting a Report Modifying Report Templates Report Result Generating ReportsTemplates Manager Modifying a Template Generated Html Report Example Report History Report HistoryReports radio button on the User Administration screen Licensing and AdministrationUser Administration for Custom Reports and SOX Reports Property Purpose Possible Values DefaultProperty Purpose Possible Values Default1 LimitationsSOX Compliance Reports SOX Reports within Custom Reports ManagerCommon Report Header Fields General Setup InstructionsReports and Acronyms Report Name AcronymReport Body Columns Cobit Objectives and Setup RequirementsHistory of Privilege Changes Report HPC HPC Report SampleAbnormal or Unauthorized Changes to Data Report AUC AUC Report SampleAbnormal Use of Service Accounts Report AUS AUS Report SampleAbnormal Termination of Database Activity Report ATD ATD Report SampleSettings Dialog for the EPA Report End of Period Adjustments Report EPAEPA Report Sample Case AssumptionsVerification of Audit Settings Report VAS VAS Report SampleArchiving Reports Licensing and AdministrationReport Size Verification of Audit Settings Report VAS Index