IBM Guardium

IBM Guardium

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  S-GATE TERMINATE not firing on specific table access

    Posted Mon August 18, 2025 12:25 PM

    Use case:

    Allow the database user GUARD to log in and run queries normally.

    Block the user immediately if they try to access the table dbo.CardholderData.

    What we tested:

    Created an access policy with Object = dbo.CardholderData and Action = S-TAP-TERMINATE.

    Result: Policy did not block the query.
    And we try with s-gate attach and s-gate terminate
    Result: Policy did not block the query.
    As a test, we changed the rule to block the user at login with s-gate attach and s-gate terminate , and it worked fine (session was blocked immediately).

    so how i can block the user when he access specific table ? 



    ------------------------------
    mohamed saleh
    ------------------------------


  • 2.  RE: S-GATE TERMINATE not firing on specific table access

    Posted Tue September 30, 2025 12:59 PM

    I am facing the same issue !!!



    ------------------------------
    Ibrahim Khaled
    ------------------------------

    Original Message


  • 3.  RE: S-GATE TERMINATE not firing on specific table access

    Posted 17 days ago

    Have you enabled FIREWALL on STAP (probably yes if user based scenario works)?
    What firewall mode do you set - Open or Close?
    How do you refer to your table in query versus blocking policy object reference?
    I suggest use the group of objects with definitions: CardholderData and %.CardholderData to avoid incompletness of blockinf scenario is your table is referred with short name or using FQDN.




    ------------------------------
    Zbigniew (Zibi) Szmigiero
    IBM
    Międzyrzecz
    ------------------------------

    Original Message


  • 4.  RE: S-GATE TERMINATE not firing on specific table access

    Posted 16 days ago

    Hi Mohamed

    Blocking feature does not work like DAM policies. Firstly you have to enable firewall on STAP level. You must be careful while writing blocking policy to avoid unwanted blocking actions. 



    ------------------------------
    Mehmet Emin Dogan
    ------------------------------

    Original Message


Related Content