Monitor data activity and enforce least privilege

Guardium® Data Protection monitors user activity, including privileged users such as DBA and SYSADMIN. This feature ensures that behavioral anomalies are detected instantly and that security teams can react quickly to unauthorized modifications.

About this task

Guardium Data Protection helps you monitor user activity with the following features:
  • Full visibility into privileged operations
  • Monitoring across shared memory and TCP/IP connections
  • Behavioral baselining of user activity for anomaly detection
  • Role-based access tracking for high-privilege users
  • Dashboards for command distribution and access trends
The following acronyms are used in the features that Guardium Data Protection uses to monitor user activity:
DAM
Data Access Management
DML
Data Manipulation Language
Includes SQL functions such as INSERT, UPDATE, and DELETE.
DDL
Data Definition Language
Includes SQL functions such as CREATE, ALTER, and TRUNCATE.

Procedure

  1. On the Guardium Data Protection home page, expand the navigation menu by clicking the navigator icon on the left side of the screen, as in the following example.
    Welcome homepage for GDP
  2. From the expanded navigation menu, go to My Dashboards > My Custom Dashboards > DAM Activity Report.
    screenshot showing menu expansion
  3. To read descriptions of each chart you can view on the user monitoring dashboards, see the following topics:

What to do next

Want to create your own dashboard with Db2 sample data? For instructions, see Connecting Guardium to Db2 sample data.