Adding an SQL Whitelist

You can add risky SQL statements to the whitelist. The SQL statements in the whitelist will be ignored during the audit.

Constraints and Limitations

The risky SQL statements can be added to the whitelist in data reports.

Adding Scanned SQL Statements

  1. Log in to the management console.

  2. Select a region, click image1, and choose Security > Database Security Service. The Dashboard page is displayed.

  3. In the navigation tree on the left, choose Data Reports. The Data Reports page is displayed.

  4. In the Instance drop-down list, select the instance whose session information you want to view.

  5. Click the Statements tab to view risky SQL statements.

  6. Add SQL statements to the whitelist.

    • Add a single SQL statement.

      1. Click Add to Whitelist in the Operation column of the target SQL statement.

      2. In the displayed dialog box, select the database and description of the target SQL statement.

      3. Click OK.

    • Add SQL statements in batches.

      1. Select the target SQL statement and click One-Clink Whitelisting.

      2. In the displayed dialog box, select the database and description of the target SQL statement.

      3. Click OK.

Add a customized SQL statement.

  1. Log in to the management console.

  2. Select a region, click image2, and choose Security > Database Security Service. The Dashboard page is displayed.

  3. In the navigation tree on the left, choose Audit Rules.

  4. In the Instance drop-down list, select the instance whose session information you want to view.

  5. Click the SQL Whitelist tab and click Add an SQL whitelist.

  6. In the dialog box that is displayed, enter the SQL Statement, Applied to the Database, and Description. Confirm the settings and click OK.