Reference for Cloud Guard
This guide lists the predefined objects in OCI Resource Analytics for the Cloud Guard service. You can find information about views, entity relationships, subject areas, and sample queries.
Views
This section provides information about views within OCI Resource Analytics Cloud Guard and their columns, data types, keys, and the referred view and column names. The following views are available:
| Name | Description |
|---|---|
| CLOUD_GUARD_ADHOC_QUERY_DIM_V | This view stores information on the details of an ad hoc query. |
| CLOUD_GUARD_DATA_MASK_RULE_DIM_V | This view stores information on data mask rules. |
| CLOUD_GUARD_DATA_SOURCE_DIM_V | This view stores detail information for a data source. |
| CLOUD_GUARD_DETECTOR_RECIPE_DIM_V | This view stores information on detector recipes, which are a collection of rules that can be configured to trigger problems that appear on the Cloud Guard Problems page. |
| CLOUD_GUARD_MANAGED_LIST_DIM_V | This view stores information on managed lists, which are a reusable list of parameters that makes it easier to set the scope for detector and responder rules. |
| CLOUD_GUARD_RESPONDER_RECIPE_DIM_V | This view stores information on ResponderRecipe resources, which contain a specific instance of one of the supported detector types (for example, activity, configuration, or threat). |
| CLOUD_GUARD_SAVED_QUERY_DIM_V | This view stores information on the details of a saved query. |
| CLOUD_GUARD_SECURITY_POLICY_DIM_V | This view stores information on security policies, which define security requirements for resources in a security zone. |
| CLOUD_GUARD_SECURITY_RECIPE_DIM_V | This view stores information on security zone recipes, which are a collection of security zone policies. |
| CLOUD_GUARD_SECURITY_ZONE_DIM_V | This view stores information security zones, which are associated with a security zone recipe and enforces all security zone policies in the recipe. |
| CLOUD_GUARD_TARGET_DIM_V | This view stores information on targets, which define the scope of resources that Cloud Guard monitors and the rules to be enforced in that monitoring. |
| CLOUD_GUARD_WLP_AGENT_DIM_V | This view stores information details of WLP agents. |
| CLOUD_GUARD_TARGET_RECIPE_ATTACHMENT_FACT_V | Fact table for the details about the target and recipes attached to it. |
The suffixes in the view names specify the view type:
- FACT_V: Fact
- DIM_V: Dimension
Relationship Diagram
This section provides diagrams that define the logical relationship of a fact table with different dimension tables.
The contents of each view and their relationships are listed in the following file: Cloud Guard views.
CLOUD_GUARD_TARGET_RECIPE_ATTACHMENT_FACT_V
Relationships exist among dimensions. These diagrams show relationships between dimension views.
CLOUD_GUARD_ADHOC_QUERY_DIM_V
CLOUD_GUARD_DATA_MASK_RULE_DIM_V
CLOUD_GUARD_DATA_SOURCE_DIM_V
CLOUD_GUARD_DETECTOR_RECIPE_DIM_V
CLOUD_GUARD_MANAGED_LIST_DIM_V
CLOUD_GUARD_RESPONDER_RECIPE_DIM_V
CLOUD_GUARD_SAVED_QUERY_DIM_V
CLOUD_GUARD_SECURITY_POLICY_DIM_V
CLOUD_GUARD_SECURITY_RECIPE_DIM_V
CLOUD_GUARD_WLP_AGENT_DIM_V
Sample Queries
Sample queries for Cloud Guard.
List all the targets using a specified recipe.
SELECT DISTINCT
RECIPE_TYPE,
RECIPE_ID,
TARGET_ID,
COMPARTMENT_ID,
REGION
FROM OCIRA.CLOUD_GUARD_TARGET_RECIPE_ATTACHMENT_FACT_V
WHERE RECIPE_ID = < insert recipe ID >
ORDER BY TARGET_ID;Other References
This section provides other references related to Cloud Guard.
Oracle Cloud Infrastructure Documentation / API Reference