How do I configure unix rules in Unix Manager to send alerts from multiple oracle databases on one Unix Server to Security Manager? (NETIQKB70731)

  • 7770731
  • 25-Oct-2007
  • 26-Oct-2007

Environment

Security Manager
NetIQ Security Agent for Unix

Situation

How do I configure unix rules in Unix Manager to send alerts from multiple oracle databases on one Unix Server to Security Manager?

Resolution

  1. Launch Unix Manager  -> click Rules Manager
  2. Select the desired ruleset.  This may involve either using  using File  -> Open, then browsing to a rule set already saved, or p ulling the rule set back into Unix Manager from the agent using File  -> From Host.
  3. Expand the ruleset if its not already, then right click on 'Group:oracle audit'  -> Select Edit -> Click the Event Source tab
  4. Select the Unix flavour required.  For example, if solaris use @log_patterns_solaris
  5. Next either change and/or add additional log file patterns as required.  If adding additional log file patterns use commas to separate each different file pattern and enclose each new pattern in single quotes.
  6. Save the rule set and send to the host using File  -> To Host(s)

Additional Information

Formerly known as NETIQKB70731