Help
FortiSIEM Discussions
MohammadAbureesh
New Contributor

Created on ‎06-14-2020 03:21 AM

FortiSIEM and Oracle DB

Hello everyone,

Regarding oracle logging, FortiSIEM is collecting audit logs from the oracle audit trail extended mode but missing a field "sqltext" with datatype is CLOB from the audit table.

 How can we capture this field on FortiSIEM?

 

514
0 Kudos
3 REPLIES 3
DanielHanman
Staff
Staff

Created on ‎06-18-2020 02:36 AM

Hi Mohammed,

Have you got an example of the table field content?

What version of Oracle are you using?

Thanks-------------------------------------------
Original Message:
Sent: Jun 14, 2020 03:20 AM
From: Mohammed Abureesh
Subject: FortiSIEM and Oracle DB

Hello everyone,

Regarding oracle logging, FortiSIEM is collecting audit logs from the oracle audit trail extended mode but missing a field "sqltext" with datatype is CLOB from the audit table.

 How can we capture this field on FortiSIEM?

 

514
0 Kudos
MohammadAbureesh
New Contributor
In response to DanielHanman

Created on ‎06-18-2020 11:32 AM

Hi Daniel,
Thanks for your help and support.
I contacted with TAC and informed me "There is an already Feature request for this situation:
RFE 0519255 - Discovery | Perf Monitoring | Doc |
JDBC SQL Monitoring - add an additional column to pull for user auditing on SQL

I added this ticket to the RFE above to inform developers that is
still an active request.
As Technical Assistance Center, we are not involved on NFR, RFE and development Roadmaps.
If you would like to be updated on the above request you need to contact your SE or regional sale channel ."-------------------------------------------
Original Message:
Sent: Jun 18, 2020 02:35 AM
From: Daniel Hanman
Subject: FortiSIEM and Oracle DB

Hi Mohammed,

Have you got an example of the table field content?

What version of Oracle are you using?

Thanks
Original Message:
Sent: Jun 14, 2020 03:20 AM
From: Mohammed Abureesh
Subject: FortiSIEM and Oracle DB

Hello everyone,

Regarding oracle logging, FortiSIEM is collecting audit logs from the oracle audit trail extended mode but missing a field "sqltext" with datatype is CLOB from the audit table.

 How can we capture this field on FortiSIEM?

 

514
0 Kudos
DanielHanman
Staff
Staff
In response to MohammadAbureesh

Created on ‎06-19-2020 05:09 AM

Thanks Mohammed, I'll look into this.-------------------------------------------
Original Message:
Sent: Jun 18, 2020 11:32 AM
From: Mohammed Abureesh
Subject: FortiSIEM and Oracle DB

Hi Daniel,
Thanks for your help and support.
I contacted with TAC and informed me "There is an already Feature request for this situation:
RFE 0519255 - Discovery | Perf Monitoring | Doc |
JDBC SQL Monitoring - add an additional column to pull for user auditing on SQL

I added this ticket to the RFE above to inform developers that is
still an active request.
As Technical Assistance Center, we are not involved on NFR, RFE and development Roadmaps.
If you would like to be updated on the above request you need to contact your SE or regional sale channel ."
Original Message:
Sent: Jun 18, 2020 02:35 AM
From: Daniel Hanman
Subject: FortiSIEM and Oracle DB

Hi Mohammed,

Have you got an example of the table field content?

What version of Oracle are you using?

Thanks
Original Message:
Sent: Jun 14, 2020 03:20 AM
From: Mohammed Abureesh
Subject: FortiSIEM and Oracle DB

Hello everyone,

Regarding oracle logging, FortiSIEM is collecting audit logs from the oracle audit trail extended mode but missing a field "sqltext" with datatype is CLOB from the audit table.

 How can we capture this field on FortiSIEM?

 

514
0 Kudos
Announcements

Welcome to your new Fortinet Community!

You'll find your previous forum posts under "Forums"

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.