Table of Contents

Search

  1. Preface
  2. Introduction to Dynamic Data Masking
  3. Rules
  4. Connection Rules
  5. Security Rules
  6. Security Rule Set Simulator
  7. Masking Functions
  8. Stored Procedure Result Set Masking
  9. Integration with Informatica Products
  10. Appendix A: XML Functions Reference
  11. Appendix B: Glossary

User Guide

User Guide

Log Message Action

Log Message Action

The Log Message action logs the security rule event.
You can use the Log Message rule action with loggers that you create in the Management Console tree. When you create the security rule, you include the name of the logger. The logger creates output based on its appenders.
The Send As property defines the severity of the event. The severity corresponds to the Log Level property that you set in the Dynamic Data Masking Management Console. If the Send As property is an equal or greater severity than the Log Level property, the logger logs the event. If the Send As property is a lower severity than the Log Level property, the logger does not log the event.
Do not use system loggers with the Log Message rule action because you might not be able to perform log analysis on the logs if they contain information from security rules.
The following table describes the Log Message action parameters:
Parameter
Description
Logger Name
The name of the logger. The logger name corresponds to a logger in the Management Console tree.
Send As
The severity of the event.
You can choose one of the following severities:
  • Information
  • Warning
  • Error
Logger Message
A message to write to the log. You can enter text or a regular expression logger message.
If you are sending user activity to Secure@Source, the Logger Message must be in CEF format so Secure@Source can read the data and monitor the activity. For example:
CEF: 0|Informatica Inc.|DDM|\(DDM_VERSION)|Audit|Audit.DAM|Informative|dst= \(AUTH_DATABASE_IP) duser=\(AUTH_USERNAME) src=\(CLIENT_IP) rt= \(AUTH_STATEMENT_RECEIVED_TIME) cs1=\(AUTH_DATABASE_NAME) cs1Label=Database cs2=0 cs2Label=AffectedRows cs3= \(AUTH_ORIG_STATEMENT) cs3Label=ParsedQuery cs4= \(AUTH_PROGRAM_NM) cs4Label=ApplicationName