History of Privilege Changes Report (HPC)

SOX Report Specifics

SOX Report Specifics

This section lists the COBIT objectives and descriptions, the FortiDB MA module-setup requirements, and individual-column detail for each report in this release.

History of Privilege Changes Report (HPC)

HPC Report Sample

COBIT Objectives and Setup Requirements

Objective

 

FortiDB MA Module

Number(s)

Objective Description

Setup Requirement

 

 

 

AI2.4, DS3.5,

Changes to escalate or reduce database-user

PM: using the Audit data

DS5.3, DS5.4

access privileges are tracked for review on a

retrieval method

 

quarterly basis by the IT manager and the

 

 

application business manager.

 

 

 

 

Report Body Columns

The following columns are displayed in the report body:

Column

Description

 

 

User ID

The ID of the database user that initiated the privilege change.

 

 

Grantee

The name of the user for whom privileges were changed.

 

 

Action

The type of action successfully enacted by a non-application user account.

 

Actions include UPDATE, INSERT, and GRANT.

 

 

Target

The object on which the privileges were changed.

 

 

Sys Privilege

The type of system privilege GRANTed to, or REVOKEd from, the grantee.

 

 

Obj Privilege

The type of object privilege GRANTed to, or REVOKEd from, the grantee.

 

 

Time Stamp

The exact time the flagged activity was conducted.

 

 

 

FortiDB Version 3.2 Utilities User Guide

44

15-32000-81369-20081219

Page 46
Image 46
Fortinet FortiDB History of Privilege Changes Report HPC, Cobit Objectives and Setup Requirements, Report Body Columns