Hi
when you have a large volume of services or instances running on oracle clusters, i have handled this in one of two ways
1. under server group - create multiple oracle services - then on the agent data interfaces allocate the Imperva service to the ipadddress:port, allow for a default in case new interfaces are added.
2. create one oracle service and then create applications and then map the database/schema to the application via the applications tab on the service level.
if you use the application method, also look at Setup->Applications - using this will allow you to map your service level applications into an application container.
you also have service and application level security/audit policies:
service level will apply to all applications under the service level
application level will apply to the applications selected.
the initial setup is time consuming when dealing with large oracle cluster environments - but using the application level approach gives you more flexibility a the database instance level.
thanks
Trevor.
------------------------------
Trevor Jackson
------------------------------
Original Message:
Sent: 09-17-2020 18:29
From: Dominic Tsang
Subject: Configuring a Database/Schema to Application Mapping
Hi Trevor,
My password to the online page not working.
I have a question related this thread.
Our site is running Oracle Partitioned database. There are hundreds of Oracle service living in one database across multiple nodes. How can we design the application/schema mapping effectively. Currently, I am creating the mapping on policy level manually and is vey tedious.
Thanks and Regards,
Dom
Database Security Specialist
Cyber Security , Cyber Protection & Design, Cyber Protective Service - DBAM
Level 19, 2 Market Street Sydney NSW 2000
Mobile +61 401 540 873
Email dominic.tsang@cba.com.au
Original Message:
Sent: 9/17/2020 8:27:00 AM
From: Trevor Jackson
Subject: RE: Configuring a Database/Schema to Application Mapping
HI
Once you create an application under a service, along side the default application, at the service level, goto the applications tab, then add an entry to map the database/schema to the application you created.
then you can create a db application level policy, the applications created under the service level will be available on the apply to tab
thanks
------------------------------
Trevor Jackson
Original Message:
Sent: 09-17-2020 05:51
From: LEE HOUREN
Subject: Configuring a Database/Schema to Application Mapping
Hi Community,
I am looking for a working guide for Configuring a Database/Schema to Application Mapping. The official Data security guide is not much help. I have created a DB application and applied an Application DB Audit all. But i cant seem to get the Application DB audit all to work. However, if i apply the same DB Audit All at Service Level, it works.
Thank you.
#DatabaseActivityMonitoring
------------------------------
LEE HOUREN
DMX PACKET SDN BHD
KUALA LUMPUR
------------------------------