DataSunrise Achieves AWS DevOps Competency Status in AWS DevSecOps and Monitoring, Logging, Performance

This website stores cookies to collect information about how you interact with our website. To find out more visit our Privacy Policy.

  • Home
  • Guides
  • Reports in DataSunrise: Crucial System for Enhanced Database Security

Reports in DataSunrise: Crucial System for Enhanced Database Security

How to Migrate DataSunrise CloudFormation Template from Launch Configuration (LC) to Launch Template (LT) Resource in Auto Scaling Group How to Send DataSunrise Events to a Microsoft Teams Channel via Incoming Webhook using Subscribers How To Offload The Audit Database Data To AWS S3 And Read It Using AWS Athena Service Convert Trial or BYOL Configuration of DataSunrise to Hourly Billing PostgreSQL (RDS) vs Aurora PostgreSQL How to Troubleshoot “Connection Was Terminated” or “Connection Terminated Unexpectedly” Errors in Applications Using DataSunrise Proxies DataSunrise’s Performance Under High Traffic Conditions DataSunrise’s Approach to Configuring Penalties for SQL Injection Detection How to Block Specific Hosts in DataSunrise for Enhanced Database Security Troubleshooting AWS Metering and Hourly Billing Issues in DataSunrise on AWS Marketplace How To Perform Cloud Formation Modification Dynamic Data Masking with DataSunrise: Masking with Lua scripts How to Choose the Database for Audit Storage: A Performance Analysis How to Run pgbench Through DataSunrise Proxy on PostgreSQL 14 with SCRAM Authentication DataSunrise SSO Authentication Based on SAML (Okta) DataSunrise SSO Authentication Based on OpenID (Okta) Comprehensive Guide On How to Search for Sensitive Data in Images Hosted on AWS S3 How to Deploy DataSunrise with Terraform Template on Azure Integrate DataSunrise with SQL Server Always On Cluster How to Deploy DataSunrise in Microsoft Azure Using Azure Resource Manager How to Perform DataSunrise Static Data Masking for MongoDB How to Configure DB Audit Trailing for MS Azure MySQL Configure DB Audit Trailing for MS Azure PostgreSQL How to Configure DataSunrise to Mask Data for Amazon Athena How to Upgrade RHEL OS version of existing DataSunrise servers How to Integrate DataSunrise with AWS Database Activity Streams for Getting Auditing Results for AWS Aurora PostgreSQL Set Up SSL Certificates for DataSunrise Database Proxy Reports in DataSunrise: Crucial System for Enhanced Database Security How to Hide Schemas From Users in Redshift AWS RDS PostgreSQL Audit Logs in DataSunrise Audit Administrative Actions in Your Oracle RDS and EC2 How to Check if DataSunrise Receives Traffic Remove a Procedure or a Function From a Database
Reports

DataSunrise provides multi-layered protection for your databases and as a result operates on a huge amount of data. Audit rules, security rules, several types of Masking rules… It’s easy to get confused with all this, and it takes a lot of time to get information about different operations.

To make it easier for you to monitor the health of your databases, DataSunrise provides a customizable reporting tool. It enables you to get all the most detailed information about your databases and the data in them by creating custom reports.

Mainly, the type of information to be included in a report depends on two settings: the type of the report, which is associated with the DataSunrise functionality you want to know about, and the filters that provide fine-tuning of the report.

Do you want to know what interactions have been performed with your database? Specify the Audit report type, and when working with the Data filter field, you can even specify a certain user whose activity should be resembled in the report.

How to Create a Report

In order to create a reports in DataSunrise, you need to navigate to Report Gen in the Reports section of the Web Console. After clicking the New button, the form for creating a report will open.

The creation of a report begins with the Basic Info section, where you need to name your report, select a server the report will be generated on (remote or local), select report format (CSV or PDF) and also specify the type of report.

Currently available report types:

  • Audit – reports on events captured by the Data Audit functionality
  • Security – reports on events blocked by the Data Security functionality
  • Masking – reports on database columns that were masked by the Data Masking functionality
  • Session Report – reports on unsuccessful database authentication attempts
  • System Events – reports on system events
  • Operation Errors – reports on SQL errors
  • Instance Status Report – reports on Proxy/Instance state
  • Direct Session Report – reports on connections (sessions) established between the target database and client applications directly bypassing DataSunrise proxies.

Further sections depend on the type of report you have selected. In them, you can for example specify the SQL queries you want to receive information about or duration of database sessions.

The rest of the sections are common for all types of reports: Frequency of Generation, Export Parameters, and Remove Results Older Than. In the first section, you can select the frequency of generating reports by time, in the second you can set a limit length of requests and send a report, and the third section enables you to automatically delete results older than the selected period (1 week, 1 month, etc.).

Reports examples

Let’s look at the examples of the principles of creating and working with DataSunrise reports

Case 1: Audit Report

Audit Report1

We start creating a report from the very first section, Basic info. We input some name (in our case it’s “audit-app”), select the server, the type of the report, and the report format (PDF here).

Basic-info

Further, in the Report Details section, we indicate the database instance and the group of database objects we have previously arranged resources into for auditing.

Below, in the Query types and Rules to report on fields, we can select queries and Rules, information about which should be displayed in our report. We will not dwell on any specific queries and Rules here.

The last stage of creating a report is setting the generation frequency. For this case, we select Manual.
To save the report, click Save.

To start report generation, you need to navigate to Reports, select the required report, and click Start in the Actions menu. The creation of the report will begin.

Reports

The message “Report generation in progress” means that the report generation is configured correctly and within a few seconds it will be generated. Otherwise, a detailed error message will be displayed.

You can download a ready-made report in the lowest section, Reports, as well as by selecting the “Load last” item in the “Actions” menu.

Load last

This is how a report generated according to the settings above looks like:

Report

Most of the information in the report is about the postgres user activity, which is likely information about the application’s data usage. Let’s dive deeper and reconfigure the report generation Rule to know which user interacted with the data.

To do this, we go back to the report generation form and exclude all information on the postgres user from it. To do this, in the Data Filter field, we specify the session.username filter, which you can find in chapter 11.4 of the User Guide.

Filters are set according to the Rules of SQL syntax. The filter below specifies a condition under which the names of all users except postgres should be displayed in the report.

Rules for reports in DataSunrise

After creation, the report file weights less, it is also much easier to find information about the users that interacted with the database.

Audit Reports in DataSunrise

Case 2: Extracting data about manipulations with user privileges

Now let’s look at an example report, containing information about manipulating privileges and creating/deleting new users.
This rule will not differ much from the one created above: you also need to set a name, select a database instance, server, and report type. It is important not to forget to specify the filter session.user_name <> ‘postgres’ to see the result only for real users.

The differences are present in the Report Details section, in the Query Actions menu. In this menu, we select only those operators we are interested in. These are all the statements associated with the Users Modify as well as the GRANT statement. For convenience, a search function is implemented in the menu.

Add Query Types for reports in DataSunrise

All selected operators are displayed in the Query Types window and easily accessible.

Query Types window for reports in DataSunrise

The generated report contains all the information we need: who and when created new users, granted them privileges or changed passwords.

Conclusion

Conclusion2

Conclusion

With a flexible system of customizable reports in DataSunrise, you no longer need to manually monitor information about the protection levels of your databases. Customize the generation of reports and receive information at the time you need it in a convenient format.

Did this guide help you?

Contact Us