1 |
General |
Where can I get the instructions for configuring Oracle audit options? |
Documentation is available from the Documentation/Help button at the top bar of the product. |
2 |
General |
Does FortiDB VA collect any customer information and store it anywhere in any form from Oracle, Sybase, MSSQL or DB2 UDB? |
No, FortiDB VA does not collect any customer information or store it anywhere in any form. It collects assessment results only. |
3 |
General |
How does OS-File Agent work on the target database machine? |
The agent for Oracle audit is used only for OS-File audit and not for DB audit option. If the audit_trail is set to DB in a Oracle database, FortiDB connects to the target database and executes the query against the audit table. If the audit_trail is set to OS, FortiDB agent is required on the Oracle target database machine. All relevant information in osaudit file which is generated by Oracle is sent to the FortiDB server by the agent. It is then saved in the FortiDB internal repository. Please ensure that the user who started the agent has permissions to access the operating system files and setup OS-File agent provided in UNIX platforms. Please refer to the Administration Guide for details. |
4 |
General |
What are the possible reasons for the user not be able to connect to a target database? |
If a user cannot connect to a target database, the user needs to: |
5 |
General |
Is data encrypted or compressed when it is stored? |
No, it is not. When the data is moved from a target database to the FortiDB server, it is directly stored (inserted) in the internal repository and not stored in any files. So Encryption or compression of the data is not necessary. |
6 |
General |
What are the minimum requirements for a user password in FortiDB? |
A password must be at least 8 characters long, and should have a number and a special character. It must not contain the user name or the user name reversed as its part. It also should not contain any white spaces. Please refer to the Administration Guide for details. |
7 |
General |
Why do I see the error message "Open database has reached the limit"? |
If you are using a trial license, it means that you have reached the number of database connections allowed for target databases. By default, it is limited to three. Please contact your Accounts Manager for more details. |
8 |
General |
Why didn’t I get alerts from UBM Session policy for Suspicious Login Time for DB2 UDB? |
Take the following sample steps to get alerts from UBM Session policy for Suspicious Login Time. |
9 |
General |
Is there any way to improve the performance of auditing using UBM? |
Performance depends on parameters settings, and applications running on the target database. It also depends on audit_trail settings. If audit_trail is set to DB, the performance is degraded compared to that audit_trail set to OS. We also recommend that auditing will be done for only important tables and not for all tables. |
10 |
General |
I can’t connect to the target database. What should I do? |
Please try to connect to the target database using IP address instead of a host name. You may need to have a static IP address for the machine. |
11 |
General |
For audit mode monitoring for DB2 UDB, do I need to setup the DB2 agent? How do I setup the DB2 agent? |
Yes, for audit mode monitoring, you need to setup the DB2 agent. |
12 |
General |
Does FortiDB support ALTER TABLEAPCE monitoring in Metadata Monitor? |
FortiDB does not support ALTER DATABASE or ALTER TABLESPACE command in Metadata Monitor. Please read Metadata Monitor Users Guide for more details |
13 |
General |
Can I scan OS level files and folder with FortiDB VA? |
Generally the VA module scans relational databases only but VA has Operating System level policies, which scan folders and files. The OS level policies are supported only when the target database is Oracle 8i/9i/10g on Solaris. For more details, please read OSVA polices in Administration Guide. |
14 |
General |
What permissions should a user have for scanning a Sybase server? |
You should grant the following permissions to the Sybase user for scanning a Sybase target server: |
15 |
General |
Can I monitor MS SQL Server at Server Level or Database Level? |
Yes, FortiDB DAM monitors users at Server Level or Database Level. It depends on how you create a connection, If the connection is Server Level, then it will monitor the user behavior for all databases in that MS SQL Server. If you create a connection at Database level, then the user behavior will be monitored only for the database and will not generate alerts if the user is doing any action (inserts, updates, deletes) of the other databases in the same SQL server. |
16 |
General |
Can I generate VA reports for only "Informational" rules? |
Yes, you can generate a report only for "Informational" rules. You can do so by making rest of the rules inactive and keeping only "Informational" rules as Active. The report generated after the scan will only have "Informational" data. |
17 |
General |
Can I test Password Strength/Password Length/Complexity/Expiration using FortiDB? |
Yes, FortiDB has Penetration Test for testing passwords. Penetration Test (Pen Test) provides the ability to do an aggressive password attack on selected databases to determine if user passwords are easy to detect thus allowing access into your database. |
18 |
General |
Does FortiDB support Informix as a target database for VA or DAM? |
No, FortiDB does not support Informix as a target database. It support Oracle, Sybase, DB2 and MS SQL and MySQL for VA and Oracle, Sybase, DB2 and MS SQL for DAM. |
19 |
General |
If the connection between FortiDB DAM and the Oracle target DB with audit is disconnected somehow, then is there a way to retrieve the data on the target DB after reconnecting to FortiDB? How can we retrieve them? |
Once the connection is resumed, IPLocks/FortiDB MA checks the data and then retrieves all the data from the Oracle Audit logs. So you don’t need to do anything for this. |
20 |
General |
Where can I find the platforms that FortiDB support? How about target Database matrix? |
Please refer to the Release Notes for FortiDB to find the latest platforms supported and Target Database matrix. |
21 |
General |
Why can't I connect to Oracle RAC (Real Application Clusters) database? |
FortiDB application do support Oracle RAC(Real Application Clusters). You need to use instance name from tnsnames.ora file instead of Service name in place of Oracle SID/Database name. This is a feature planned for FortiDB software version 5.0.x. |
22 |
General |
Does FortiDB support named instance of MS SQL server? Why do I get an error message when I try to connect to MS SQL Server named instance? |
Yes, we support connection to SQL 2000 or SQL 2005 named instance from FortiDB 3.0. It doesn't matter if the instance is default or not. Our application do not care if it is named instance or not in a SQL server and will connect to it if the IP address/Hostname, port name, database name, user id and password is correct. |
23 |
IPLocks 6.x |
Is upgrade of IPLocks5.x or IPLocks 6.0.01 to IPLocks6.2 with Oracle repository supported? |
Even though there is no clear upgrade path from IPLocks5.x or IPLocks6.0.01 to IPLocks6.2.00, we are confident that it can be arranged through our professional service. Please contact your Account Manager for further details. |
24 |
IPLocks 6.x |
Is there any default timing for scheduled assessments of VA? |
Yes, the default value for VA schedules settings is 720 hours which is 30 days interval and is set at the module level. To check this, please go to VA -> Set defaults -> Module Schedule Settings -> hours. |
25 |
IPLocks 6.x |
Does IPLocks6.2 support Oracle 9.2.08 and 10gR2 on either Solaris 9 or 10 as the platform for IPlocks server? |
Yes, IPLocks6.2 is certified on Solaris 9 and 10. |
26 |
IPLocks 6.x |
Can I restore the alerts which IPLocks 6.0.02 archived in IPLocks6.2? |
Yes, alerts archived in IPLocks6.0.02 can be restored in IPLocks6.2. |
27 |
IPLocks 6.x |
Which file contains information about the IPLocks6.2 internal repository configuration? |
In IPLocks6.2, the install.properties file in the \IplocksApp\conf directory contains internal repository configuration. |
28 |
IPLocks 6.x |
When I try to install IPLocks6.2, I get an error message, "The Windows Installer Service could not be accessed". What is the problem? |
This error is not caused by IPLocks installation. This is a known issue published by Microsoft. Please refer to http://support.microsoft.com/kb/315353 |
29 |
IPLocks 6.x |
Isn’t IPLocks6.2 VA software vulnerable to the Apache Tomcat JK Connector? |
Since we do not use Apache Tomcat JK connector, IPLocks6.2 is not vulnerable to the JK Connector. |
30 |
IPLocks 6.x |
What is the best way to schedule VA assessments |
For scheduling VA assessments, you can use database-level scheduling for each database. The database-level scheduling can be done by VA module -> Set Defaults -> Database schedule settings and then adding your own schedule. |
31 |
IPLocks 6.x |
What if my dssConfig.properties file gets corrupted? Can I recreate it? |
Yes, you can recreate dssConfig.properties file. Please take the following steps: |
32 |
IPLocks 6.x |
If IPLocks Administrator forgets the password, is there any way to recover or reset the admin password ? |
Yes, it can be reset by running the SQL statement if the internal repository is Oracle. It will reset the password back to the default. Please contact technical support for more details. |
33 |
IPLocks 6.x |
What is the purpose of Data Retrieval Method (Audit/No Audit) and Trace File folder? |
Data Retrieval Method is how data is retrieved by IPLocks from target databases. In MM/PM module, Audit and No Audit options are used, while in UBM only Audit option is used in SQL server. In Audit option, the trace file is used to collect data from target databases, by default, the default trace saves event data to the LOG folder at the location of the SQL Server installation but in IPLocks it defaults to C:\\. In Non Audit option, only snapshot of the target database is taken and that is used for diagnosing auditing security information. |
34 |
IPLocks 6.x |
Why can’t I load IPLocks6.2 policies properly from newer XML files? |
IPLocks Administrator needs to follow the steps below(after the installation of the product): |
35 |
IPLocks 6.x |
Can I customize IPLocks6.2 screen in order to show Double Byte Characters such as Chinese and Japanese? |
IPLocks6.2 works on platforms using the double byte character code, so IPLocks6.2 should work without any problems on the operating system supporting the double byte character Code. However, IPLocks6.2 GUI only appear in English. |
36 |
IPLocks 6.x |
How can I download IPLocks/FortiDB free trial version. |
You can download free trail version from our website: http://www.fortinet.com/products/fortidb/software.html |
37 |
IPLocks 6.x |
What are the default ports in IPLocks6.2 for connecting to IPLocks application? |
For non secure connection using http, the default port is 9100. |
38 |
IPLocks 6.x |
Can I use the latest available Polices as part of quarterly up2date for IPLocks6.2 or IPLocks6.x versions? While updating IPLocks policies , do I need to update IPLocks product/ binaries ? |
Yes, you can use the same policies and there are no restrictions. |
39 |
IPLocks 6.x |
Why am I not getting emails from iplocks SMTP server for reports or alerts from IPLocks application |
For emails, you need to setup your own SMTP server. The mail server name given in IPLocks application is just an example and is not to be used for getting emails from IPLocks application. Please set up your SMTP server to get emails for alerts or reports generated by IPLocks application. |
40 |
IPLocks 6.x |
How can I delete the predefined rules when internal repository is PostgreSQL? |
Take the following steps and commands to delete old rules when the internal repository is PostgreSQL in IPLocks 6.2. |
41 |
IPLocks 6.x |
What are the minimum privileges to be granted to a user to run a VA Scan for DB2? |
The minimum privileges that needs to be granted to a user for a VA Scan are as described below. |
42 |
IPLocks 6.x |
How do I configure email receivers for groups in VA? |
The better way of associating emails groups with database or database groups is using the Report Manager module. For doing this, go to Alert Report Manager - > New reports, then give the Report Name(as per your choice), give the values for Status, Severity, Module, Database(s), Policy, Guarded Item, Alarm Generated Time, and click on Save. You can select multiple values for these settings using shift and mouse click. |
43 |
IPLocks 6.x |
How can I disable the JP locale? |
Take the following steps to disable the JP locale: |
44 |
IPLocks 6.x |
How do I connect to Oracle 10g target database? |
In order to manually enter database-connection information, the steps are: |
45 |
IPLocks 6.x |
Why are my results of scanning databases with IPLocks 6.2 different from IPLocks 6.0? |
If you didn't clean up the old rules from the internal repository and load a new XML file, there is inconsistency in the results between IPLocks6.0.01 and IPLocks6.2. You need to clean up the old rules from the internal repository for both IPLocks using the following command: |
46 |
IPLocks 6.x |
Why is Archive/Restore so slow? Do I need some more indexes? |
If you create indexes on IPLocks tables in IPLocks internal repository, you can improve the performance. |
47 |
IPLocks 6.x |
How do I change dssConfig.properties? |
For Standalone, IPlocks dssConfig.propeties file is located under $IPLOCKS_HOME/config. |
48 |
IPLocks 6.x |
Why don’t I see the OS level Policies checkbox? |
IPLocks6.2 supports OS Level policies only when the target database is Oracle on Solaris. Updating a license key doesn’t affect visibility of the OS Level Policies checkbox. |
49 |
IPLocks 6.x |
I can’t connect to a MS SQL target database when I am using Names Instance. What should I do? |
Please check the port number before making a connection. The named instance in MS SQL Server does not have any effect on the connection. Mostly the port number is different than the default in case of Named Instance. |
50 |
IPLocks 6.x |
Adobe Reader could not open the report. |
JasperReports cannot handle the logo names which have a space in it. Remove the space and it should work fine. |
51 |
IPLocks 6.x |
If ntp (network time protocol) failed and the time is out of sync, do I need to restart IPLocks? |
Yes, you need to stop and restart IPLocks application. |
52 |
IPLocks 6.x |
What should I do if I do not want to grant create table privilege to a user? |
You can revoke the 'create table privilege' from the user after connection has been opened (open and Run button). |
53 |
IPLocks 6.x |
What should I do if my target databases are behind a firewall? |
You need to open the port numbers for the IPLocks to scan the target databases correctly. The default port number for target databases are: |
54 |
IPLocks 6.x |
How do I avoid default email server error message in the iplocks.log or catalina.out file |
The reasons why IPLocks generates error message in the iplocks.log or catalina.out file are: |
55 |
IPLocks 6.x |
Where can I find IPLocks Administration Guide and other Documentation? |
If you want to have the Administration Guide or Users Guide, login to the application as a user and click on the Documentation link of top right hand. You will see documentation in html and pdf formats. |
56 |
IPLocks 6.x |
Is there a way to auto enable UDR? |
There is no parameter in dssConfig.properties for automatic enabling the UDR. The user has to manually stop and start the connection for monitoring to start again. |
57 |
IPLocks 6.x |
How do I view and store VA Reports in html format for IPLocks instead of sending them as email? |
There are two ways to view and store VA Reports: |
58 |
IPLocks 6.x |
I forgot IPLocks admin password. and my internal repsoitory is PostGreSQL. How can I reset the admin password? |
IPLocks admin password needs to be reset. Please contact IPLocks Support for steps to reset IPLocks admin password. |
59 |
IPLocks 6.x |
Is there any difference, if I am connecting to a named instance on a MSSQL server? Does Auto Discovery work for named instances? |
The process for connecting to the named instance is similar to the default instance. Generally the port number for named instance is different from the default port number of 1433. Please correct the port number that might be causing the problem. On SQL 2000, you can find the port number by doing the following steps: |
60 |
IPLocks 6.2 |
Does IPLocks support Oracle Advanced Security Options Configuration? |
As of today, IPLocks6.2 does not support Oracle Advanced Security configuration. Please contact your account Manager if you need any more information about this feature. |
61 |
IPLocks 6.x |
Where can I get a version, time of update information for XML update? |
The easiest way of tracking PDR update is from PDRLOG table of the internal repository. |
62 |
IPLocks 6.x |
How do I install a new license key which I have received from IPLocks? |
You will need to replace your existing license.properties file in <IPLocks_Home>\conf directory with the license file you have received from IPLocks and restart IPLocks server. In order to restart IPLocks, you go to <IPLocks_Home>\bin, stop and start IPLocks using stop-iplocks or start-iplocks command from the command line. |
63 |
IPLocks 6.x |
Is there a way to store multiple versions of the policies for a single database? |
You cannot store multiple versions of the policy for a single database. However, you can make two connections to the same database with different database connection names and in one connection, you can enable policies for DBA, disable policies which are not required for DBA and in the second connection you can enable policies for Auditors and disable the policies which are not needed for Auditors. |
64 |
IPLocks 6.x |
Can I upload multiple database connections from text or excel file? |
Yes, you can use upload utility and use text file to upload all the database connections. |
65 |
IPLocks 6.x |
How can I view my old VA Scan reports? |
Previous VA Scan Reports can be viewed by clicking on Report Manager -> VA Trend Report -> then selecting the |
66 |
IPLocks 6.x |
Does IPLocks support Oracle RAC and do I need to VA Scan on all nodes? |
Yes, IPLocks supports Oracle RAC (Real Application Cluster). You need to scan the main node and not all nodes. |
67 |
IPLocks 6.x |
Can I do IPLocks scan using Windows authentication? |
Yes, you can use Windows Authentication for VA Scanning instead of SQL Authentication. You need to use this format on Create New Database Connection: |
68 |
IPLocks 6.x |
Does IPLocks 6.2 support databases running on zLinux as Target database? |
IPLocks6.2 does not support a databases running on zLinux as a target database. It is not in our roadmap right now and will be considered in the future. |
69 |
IPLocks 6.x |
Can I upload MS SQL Server Level Connection using a text file? |
Yes, you can upload Server level connection for MSSQL or Sybase from a text file. |
70 |
IPLocks 6.x |
Do I need to grant CONNECT, IMPLICIT_SCHEMA and USE OF TABLESCPACE USERSPACE1 privileges to USER to do VA Scan against the DB2 target database? |
By default, the connect privilege is available to PUBLIC. So until and unless CONNECT, IMPLICIT-SCHEMA and USER OF TABLESPACE USERSPACE1 have been revoked from PUBLIC, the USER needs only the following privileges to VA Scan a target database. - SYSCOLAUTH - SYSDBAUTH - SYSINDEXAUTH - SYSPLANAUTH - SYSSCHEMAAUTH - SYSTABAUTH - SYSTBSPACEAUTH |
71 |
IPLocks 6.x |
Can I scan DB2 databases if I am using customized special builds from IBM? |
As of now, IPLocks does not support customized special builds from IBM for VA Scan. IPLocks only supports builds released by IBM on their website as GA or FixPak builds. |
72 |
IPLocks 6.x |
Why is IPLocks starting very slow? |
The problem might be due to a large number of open connections. Please try to close all open connections before stopping IPLocks. For closing/opening the connections quickly, you may use CLI. |
73 |
IPLocks 6.x |
Is it possible to install two instances of IPLocks 6.2 on the same machine? |
Technically, you can install two instances of IPLocks6.2 on the same machine without any issues. However, you need to consider the following issues while installing IPLocks6.2: |
74 |
IPLocks 6.x |
I cannot make a connection from IPLocks when the target database is Sybase on HP-UX. What should I do? |
When Sybase 12.5.4 ASE server is installed on HP-UX, Roman 8 encoding is installed by default. This is the reason why IPLocks is not able to connect to Sybase databases on HP-UX. Please contact Fortinet support for Hotfix to solve this problem. |
75 |
IPLocks 6.x |
Why does my DB2 V7 connection hang? |
Here are the steps to connect to DB2 V7 as a target database: |
76 |
IPLocks 6.x |
Can I scan database across the firewall? |
Yes, you can scan databases across a firewall. You need to open a port in the firewall for IPLocks to access your SQL Server. Your network admin should be able to help in this issue. |
77 |
IPLocks 6.x |
Can I archive data to SAN (Storage Area Network) instead of $IPLOCKS_HOME folder? |
By default, archiving will save the archived data in $IPLOCKS_HOME\archive. However, you can ftp this data to SAN and delete it from your $IPLOCKS_HOME\archive folder. In order to restore, you have to ftp it back to $IPLOCKS_HOME\archive folder again. You can delete the data from the archive folder but keep the archive folder under $IPLOCKS_HOME. |
78 |
IPLocks 6.x |
Do I need a new license if I change the internal repository from PostGreSQL to Oracle? |
A license key is not dependent on the type of internal repository but is dependent on the MAC address of the machine. Same key can be reused if there is a change of internal repository only. |
79 |
IPLocks 6.x |
Does IPLocks6.2 have SDK? |
IPLocks6.2 does not have SDK available. But we have CLI for automating various functions for MM, PM and VA modules. You can read more about CLI in IPLocks6.2 documentation. |
80 |
IPLocks 6.x |
Can I do IPLocks6.2 silent install on Windows? |
In order to install IPLocks6.2 using the Silent installer mode, take the following steps: |
81 |
IPLocks 6.x |
Do I need administrative privileges to install and launch the application on Windows? |
Yes, IPLocks6.2 requires administrative privileges to install and launch the application or start/stop services. |
82 |
IPLocks6.2 |
Where can I find IPLocks6.2 documentation? |
The install Guide and Release Notes can be downloaded from our ftp site (blinder.iplocks.com, it is the same site from where you downloaded IPLocks6.2 GA build). |
83 |
IPLocks 6.x |
Is there a way to reduce or decrease the number of violations so that we don't run into the overflow problem in UBM? |
There is a parameter dss.sqlstatement.level in the dssConfig.properties file which controls filtering. It determines which statements are kept (and not filtered out) in order to subsequently determine if they might correspond to a SQL statement related to an IPLocks UBM policy. |
84 |
IPLocks6.2 |
Why am I getting Unique constraint (IPLOCKS.DATABASES_CONST1) violated error message after upgrade to IPLocks6.2 ? |
Here are the steps to solve this issue: |
85 |
IPLocks6.2 |
How can I schedule a VA scan and generate reports using IPLocks6.2? |
You can do the scheduling and report generation in IPLocks6.2 the way you want by using CLI. All your requirements of scheduling a VA Scan and generating a VA report can be met by using CLI. |
86 |
IPLocks6.2 |
How do I set up the DB2 agent on a target machine? |
For setup of the Agent for DB2-Audit-Based V8 Retrieval, please refer to the Administration Guide for details. |
87 |
IPLocks 6.x |
How can I display "Reason for update" in the Summary report and exporting it to pdf or excel format? |
The “Reason for update” textbox cannot be shown in pdf or excel file. As of now, you need to use Jasper report to customize it. |
88 |
Standalone |
How can I optimize IPLocks/FortiDB performance by setting Oracle as internal repository? |
You can optimize performance by the Oracle parameter tuning. It depends on individual machine settings and hardware. In order to handle a large amount of SQL statements, or large amount of audit data, the repository database has to be tuned. A default installation will not be sufficient to handle the large amount of data load and matching process with the SQL statements. The following parameters need to be set as high as possible based on the available memory for the system: |
89 |
Standalone |
The audit logs of target databases are encrypted for my internal security. If authentication is available for the target database connection, can IPLocks/FortiDB scan the databases?
|
The IPLocks/FortiDB agent cannot read encrypted data. If the user encrypts a database log when the audit_trail is set to OS, IPLocks/FortiDB application cannot scan even if there is appropriate authentication for the user. |
90 |
Standalone |
How can I restore an IPLocks/FortiDB Instance in case of hardware failure? |
In case of hardware failure, please take the following steps to rebuild the IPLocks/FortiDB server: |
91 |
Standalone |
Why can’t I sometimes delete database connections when my internal repository is Oracle and when I have very large number of database connections? |
You need to create the following indexes if you are running into a problem to delete database connections due to very large numbers of connections and resulting in performance issues: |
92 |
Standalone |
Does IPLocks/FortiDB support Windows Server 2003 with SP2? |
Yes, IPlocks/FortiDB supports Windows Server 2003 with SP2. |
93 |
Standalone |
What should I do if my IPLocks/FortiDB application is running out of Java Heap Memory? |
Please check the physical memory size and Oracle SGA size. |
94 |
Standalone |
Why can’t I start IPLocks after changing IPLocks password in internal repository? |
If you have changed the password in the Oracle repository, then you should put that password in install.properties file in clear text in place of |
95 |
Standalone |
Can I change the starting number of the Alert ID from 101 to some other number? |
IPLocks Admin cannot change the Alert ID from the GUI or by changing the setup/configuration files. However, it can be changed by changing the sequence start number in the internal repository. Since we have not tested this by changing the sequence number in the internal repository, it is not recommended. |
96 |
Standalone |
Can I display more than 100 alerts in UBM? |
UBM stores all the violations but will display only first 100 violations. There is a parameter named dss.ubm.maxaccessviolations in dssConfig.properties file which controls this. |
97 |
Standalone |
How can I change the port number https and http port for IPLocks v7/FortiDB 3.x application? |
The default port http for IPLocks/FortiDB application is 9100 and https is 8433.
|
98 |
Standalone |
Does FortiDB 4.x support LDAP or Active Directory authentication? |
Yes, presently /FortiDB 4.x does support LDAP or LDAP through Active directory authentication. |
99 |
Standalone |
Why can’t I install FortiDB 4.x with PostgreSQL as internal database, |
Unlike IPLocks6.2, PostgreSQL is not bundled with the IPLocks v7/FortiDB 3.x Installer. The user has to install PostgreSQL 8.3. separately. If you want to use IPLocks v7/FortiDB 3.x for Demo purposes only, Derby, a flat file database is shipped with IPLocks v7/FortiDB 3.x; Please choose the Derby option for internal database instead of PostgreSQL. |
100 |
Standalone |
How can I find the version number and the timestamp when PDR XML file was uploaded? |
The user can query a table in internal repository using the following SQL and find out the XML file name, version number and time it was uploaded. |
101 |
VA |
When a user cannot see descriptions for VA policies in VA reports or error messages, what could be the possible reason? |
If the user doesn’t see any description or the error message as shown below, one of the possible reasons could be a space problem on the user's target database machine. "The result set for this policy could not be displayed, due to the inability to retrieve the required object information". Increasing the space may address the issue. The Other reason could be privileges granted to the user who is scanning the database. Please grant the correct privileges as advised in the Administration Guide. |
102 |
VA |
How can I find how much storage space is used by VA reports in an internal server? |
You can run the following SQL query to find the storage space used by VA reports. Every time you run a scan against a database, it subtracts the previous scan value which will give the user storage space used for each scan. Please run this SQL query as a user, system, if your internal repository is Oracle. |
103 |
VA |
Where can I view the historical reports for VA scan? |
You can see the historical reports from VA Trend Report. You need to go to the bottom of the page and will find all the historical reports sorted by timestamps. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.