LOGbinderSQL
Version: LOGbinderSQL 2.0.2 and later.
LOGbinder SQL fills a critical gap between enterprise database servers and audit log management solutions, allowing you to obtain a clearly-written and easy-to-understand audit log that is accessible to your existing log management solution. LOGbinder SQL is a small, efficient Windows service that runs on any Windows server on your network. On instance of LOGbinder SQL can process logs from many SQL Servers.
Netsurion Data Source Integration for LOGbinderSQL allows you to monitor following:-
- Monitoring SQL database activities such as database, creation, deletion and migration.
- Monitoring authentication success and failures.
- Monitoring user logon success, failures.
- Monitoring table creation, deletion, deletion failed.
Once logs are received in to Netsurion Open XDR, Alerts and reports can be configured into Netsurion Open XDR.
The following are the key Data Source Integration available in Netsurion Open XDR.
Alerts
| Type | Name | Description |
|---|---|---|
| Security | LOGbinder SQL – Audit failure | This alert is generated when user audit failed. |
| Security | LOGbinder SQL – Login failed | This alert is generated when user login failed. |
| Security | LOGbinder SQL – Member deletion from database role successful | This alert is generated when member remove from database role successful. |
| Security | LOGbinder SQL – Member deletion from server role successful | This alert is generated when member remove from server role successful. |
| Security | LOGbinder SQL – Password expired | This alert is generated when user password expired. |
| Security | LOGbinder SQL – Privileges change successful | This alert is generated when privileges change successful. |
| Security | LOGbinder SQL – Privileges change command issued | This alert is generated when privileges change command issued. |
| Security | LOGbinder SQL – Delete command issued | This alert is generated when delete command issued. |
Reports
| Type | Name | Description |
|---|---|---|
| Security | LOGbinder SQL – Account unlocked | This category based report provides information related to user account unlocked. |
| Security | LOGbinder SQL – Audit change command issued | This category based report provides information related to audit change command issued. |
| Security | LOGbinder SQL – Audit failure | This category based report provides information related to audit failure. |
| Security | LOGbinder SQL – Login failed | This category based report provides information related to user login failed. |
| Security | LOGbinder SQL – Login successful | This category based report provides information related to user login successful. |
| Security | LOGbinder SQL – Database role member addition success | This category based report provides information related to member added to database role successful. |
| Security | LOGbinder SQL – Member deletion from database role successful | This category based report provides information related to member remove from database role successful. |
| Security | LOGbinder SQL – Server role member addition success | This category based report provides information related to member added to server role successful. |
| Security | LOGbinder SQL – Member deletion from server role successful | This category based report provides information related to member remove from server role successful. |
| Security | LOGbinder SQL – Privileges change successful | This category based report provides information related to privileges change successful. |
| Security | LOGbinder SQL – Privileges change failed | This category based report provides information related to privileges change failed. |
| Security | LOGbinder SQL – Privileges change command issued | This category based report provides information related to privileges change command issued. |
| Security | LOGbinder SQL – Change command issued | This category based report provides information related to change command issued. |
| Security | LOGbinder SQL – Create command issued | This category based report provides information related to create command issued. |
| Security | LOGbinder SQL – Delete command issued | This category based report provides information related to delete command issued. |
| Security | LOGbinder SQL – Alter command issued | This category based report provides information related to alter command issued. |
| Security | LOGbinder SQL – Backup command issued | This category based report provides information related to backup command issued. |
Documentation
The configuration details are consistent with Netsurion Open XDR 7.x and later, and LOGbinderSQL.
Download Integration Guide for configuration instructions and more information.