db – SGBox Next Generation SIEM & SOAR https://www.sgbox.eu Next Generation SIEM & SOAR Tue, 05 Nov 2024 10:58:38 +0000 en-US hourly 1 https://wordpress.org/?v=6.7.1 https://www.sgbox.eu/wp-content/uploads/2020/09/cropped-Logo-SGBox-Trasparente-NO-SCRITTA-150x150.webp db – SGBox Next Generation SIEM & SOAR https://www.sgbox.eu 32 32 Configure Oracle App https://www.sgbox.eu/en/knowledge-base/configure-oracle-app/ Tue, 03 Jan 2023 10:41:46 +0000 http://10.253.1.91/?post_type=epkb_post_type_1&p=8013 Download and Configure Microsoft SQL App

This articles explain how to configure Oracle App in order to retrieve logs from a specified database table.
Requirements:

  • SGBox version 4.2.5

Go to the application lists from SGBox go to SCM > Applications
Configure Oracle App

Select Vendors Integrations and download the application Log from Oracle. Click on INSTALL. Once Installed click on EDIT icon

Configure Oracle App Configure Oracle App

You need to configure the application as follow:
Configure Oracle App

Host: Database IP
SID: Oracle SID
Port: DB port
Username: Oracle user used to login
Password: Oracle user's password
Star Date: Initial date to retrieve logs
Timestamp field: The Column name that contain the timestamp
Timestamp table: The table that contain the timestamp
Separate field: Character used to separate information once retrieved
Query: query used to extract information

IT’S VERY IMPORTANT TO NOT PUT ANY TIMESTAMP CONDITION OR * IN THE SELECT FIELD

After configured you need to schedule the application to be executed. See this section to know how to schedule an application.

The first time the application has been run some components are added and if everything is ok you can see in LM > Analysis> Historical Search the results
Configure Oracle App

Once executed you’ll see your logs LM > Analysis > Historical Search
Configure Oracle App

If yuo have more databases or more SQL Server you can clone it and configure a new one.
Configure Oracle App

]]>