Asset inventory

IBM® Guardium® Insights provides a unified view where you can manage an inventory of data assets and their associated context information. For example, risk events, vulnerability assessment results, data classification results, business tags, and other related attributes. The entities such as a database (of the same type) along with IP addresses with port, or host names with port constitutes an asset. The broader view of the asset risk information helps you to easily view and identify the critical risks and prioritize mitigation activities.

Version 3.4.x and later This content only applies to Guardium Insights Version 3.4.x and later.

Asset data

You can find multiple layers of infrastructure that underlie named databases, which include server instances and server hosts. In the cloud-based world, those underlying layers can be made transparent to the user through Database as a Service (DBaaS). The common denominator between cloud and on-premises databases is the named database. Therefore, the named database is the foundation of Assets Service in IBM Guardium Insights.

Assets are identified as a byproduct of Guardium Insights data ingestion process. The asset ingestion process runs every hour to import assets into the asset repository. The asset inventory is created by aggregating data assets from the following multiple sources.

Datamart ingestion tables from Guardium Data Protection and streams.
Health information of Guardium Data Protection S-TAPs and cloud sources.
Vulnerability assessment (VA) scans and data classification scans from Guardium Data Protection.

Guardium Insights Asset Service draws the relationships between related data points of the various sources. For example, S-TAP triggered monitoring events for a host can be matched with VA scan results for databases on the same host.

Asset list view

Use the Asset inventory page to view and manage the assets. The default asset view lists all the assets in the inventory along with their attributes. To access the page, click Asset inventory in the main menu ( Menu icon ) at the upper left of the page.

From the Asset inventory page, you can do the following activities.

Drill down to view and manage an individual asset. For more information, see Investigating assets and their risk attributes.
View and manage tagging rules. For more information, see Creating auto-tagging rules.
View and manage custom tags. For more information, see Managing tags.

Asset information on the overview dashboard

View the high-level asset information from the Guardium Insights overview dashboard. To access the dashboard page, click Dashboards in the main menu. The Classic Guardium Insights overview dashboard includes the following cards to view the asset information. Click the link on the respective cards to view more details.

Dashboard card	Description
New assets identified	Number of assets that are identified through the data ingestion process in the last 24 hours.
Unmonitored assets	Number of assets that are not monitored for the database traffic.
Dormant assets	Number of assets that are not active since the last 30 days.
Untagged assets	Number of assets that are not assigned with any data criticality or business tags.
Highest asset tag count	Top five asset tags for the selected category.
Vulnerability trend (last one month)	Trend of open vulnerabilities with severity in different ordinal values such as critical, major, and minor in the last one month. You can view the trend chart for the selected category and tag.
Assets with open vulnerabilities (last seven days)	Number of open vulnerabilities based on platform and severity. You can view the bar chart for the selected category and tag.
Classification scan status	Classification scan status for the assets based on compliance category tags.
Vulnerability scan status	Vulnerability scan status for the assets based on various platforms. You can view the chart for the selected category and tag.