Managing your Guardium system
Management tasks include monitoring your system’s health and managing artifacts such as groups, domains, and notifications.
- Guardium Administration
Guardium® administrators perform various administration and maintenance tasks. - Certificates
Check certificates periodically to avoid loss of function. Use CLI commands to obtain and install new certificates. - Unit Utilization Level
Use unit utilization reports to identify under- and over-utilized systems in your Guardium environment. - Customer Uploads
Database Activity Monitor Content Subscription (previously known as Database Protection Subscription Service) supports the maintenance of predefined assessment tests, SQL based tests, CVEs, APARs, and groups such as database versions and patches. - Services Status panel
The Services Status panel is a centralized place to check status of services such as CAS or alerter, and if necessary, investigate each service further. Open the Services Status panel by clicking Setup > Tools & Views > Services Status. Each time the Services Status panel is opened, the status of each service is refreshed. - Archive, Purge and Restore
Archive and purge operations should be run on a scheduled basis. Use Data Archive and Results Archive to store captured and information for auditing. Amazon S3 Archive and Backup in Guardium also appears at the end of this topic. - Guardium catalog
When you archive data from your Guardium system, the Guardium catalog tracks where every archive file is sent, so that it can be retrieved and restored. - How to manage backup and archiving
Establish data retention practices; control activity volume; manage scheduling of data archive and purge, and monthly backups. - Exporting Results (CSV, CEF, PDF)
CSV, CEF, and PDF files can be created by workflow processes. This function exports all such files that are on the Guardium system. - Export/Import Definitions
If you have multiple systems with identical or similar requirements, and are not using Central Management, you can define the components that you need on one system and export those definitions to other systems, provided those systems are on the same software release level. - Distributed Interface
Use this configuration screen to define the Distributed Interface and upload the Protocol Buffer (.proto) file to the DIST_INT database. - Manage Custom Classes
Upload and maintain custom classes used in alerts or evaluations. Manage custom classes by clicking Setup > Custom Classes. - SSH Public Keys
Use this information to create, modify or remove an SSH Public Key. - How to install an appliance certificate to avoid a browser SSL certificate challenge
Use IBM Security Guardium CLI commands to create a certificate signing request (CSR), and to install server, certificate authority (CA), or trusted path certificates on your Guardium system. - Self Monitoring
The Guardium solution monitors itself to minimize disruptions and correct problems automatically whenever possible. - Groups
Using groups makes it easy to create and manage classifier, policy and query definitions, as well as roll out updates to your S-TAP's and GIM clients. Rather than having to repeatedly define a group of data objects for an access policy, put the objects into a group to easily manage them. - Security Roles
Security roles are used to grant access to data (groups, queries, reports, etc.) and to grant access to applications (Group Builder, Report Builder, Policy Builder, CAS, Security Assessments, etc). - Notifications
Use the Alerter and Alert Builder to create notifications. When email or other notifications are required for alerting actions, follow this procedure for each type of notification to be defined. - How to create a real-time alert
Send a real-time alert to the database administrator whenever there are more than three failed logins for the same user within five-minutes. - Custom Alerting Class Administration
Use a custom alert class to send alerts to a custom recipient. Upload the custom class, then use the Alert Builder to designate the custom class as an alert notification receiver. - Predefined Alerts
Table describing the predefined alerts found in the Alert Builder. - Scheduling
The general purpose scheduler is used to schedule many different types of tasks (archiving, aggregation, workflow automation, etc.). - Aliases
Create synonyms for a data value or object to be used in reports or queries. - Dates and Timestamps
Use a calendar tool to select an exact date, and a relative date picker to select a date that is relative to the current time. - Time Periods
Use the Time Period Builder to create time periods that can be used for policy rules and query conditions. - Time Periods
Policy rules and query conditions can test for events that occur (or not) during user-defined time periods. - Comments
Comments apply to definitions and to workflow process results. - How to install patches
Install a single patch or multiple patches as a background process. - Support Maintenance
The Support Maintenance feature is password protected and can be used only as directed by Technical Support. Contact Technical Support if you require more information.