Monitor Azure event hubs

After you define your Guardium cloud DB service account for Azure, you can assign the Azure event hub to a Guardium collector for monitoring.

About this task

For Azure, Guardium monitors event hubs. To start monitoring event hubs, you need to take the following steps:
  • In Azure, associate the event hub to the database you want to monitor.
  • In Guardium, use the Event Hubs window to associate an Azure event hub with a Guardium collector.

Procedure

From Azure, associate the event hub to your database.

  1. From the Azure home page, take the following steps, depending on whether your site uses an Azure SQL Database or a Cosmos database.
    • For an Azure SQL Database:
      1. Select SQL databases, and then select the database that you want to associate with Guardium.
      2. Under Security, select Auditing.
      3. Turn Auditing to ON.
        Note: Do not enable auditing on both the database and the server. Note that if you enable auditing on the server you will receive records for all databases on that server.
      4. Under Audit log destination, select Event Hub (preview).
      5. Select Event hub Configure and then configure the Event hub details by selecting the Event hub namespace, the Event hub policy name, and the Event hub name .
      6. Click OK to save your changes.
    • For any supported Cosmos database:
      1. Select Azure Cosmos DB, and then select the database that you want to associate with Guardium.
      2. From Monitoring, open Diagnostic Settings
      3. Click Add Diagnostic setting.
      4. Select Event hub Configure and then configure the Event hub details by selecting the Event hub namespace, the Event hub policy name, and the Event hub name .
      5. Under Logs, select DataPlaneRequests.
      6. From Add Diagnostic setting, enter a name for this datastream and select Stream to event hub.
      7. Click Save to save your changes.

Then, from Guardium, you can associate the Azure event hub with a Guardium collector:

  1. In Guardium, browse to Discover > Database Discovery > Cloud DB Service Protection, and select a Cloud DB service account.
    The Cloud DB Service Account window opens, and displays the Event Hubs table.
  2. From the Event Hubs window, click Add icon to open the Add a new event hub pane.
  3. Enter the following information, which is described in Gathering Microsoft Azure information:
    • Event Hub Name: The name of your Azure event hub.
    • Collector: The name or IP address of the Guardium collector.
    • Namespace: Your Azure event hub namespace.
    • DB Type: Select the database type for your data.
    • DB DNS endpoint: The DNS name of the database. For example, mycosmostable1.table.cosmos.azure.com.
    • Port: The DB DNS port.
    • Consumer Group Name: The Azure consumer group name.
    • Storage Connection String: The Azure storage connection string.
    • Cluster resource id: The database resource ID for the data source.
  4. Optionally, select Start monitoring event hub. If you do not start monitoring now, you can enable monitoring from the Event Hubs table later.

What to do next

Select the event hub and use Enable monitoring and Disable monitoring to turn monitoring of the selected event hub monitoring on and off.

Manage your event hubs. For more information, see Manage Azure event hubs.