Oracle Cloud Infrastructure Documentation

Viewing User Activity Problems

View the geographic origins of user activity in Cloud Guard, based on the source IP address.

    1. Open the navigation menu and click Identity & Security. Under Cloud Guard, click Overview.

      The User Activity Problems tile map displays the following types of symbols:

      • Image of symbol representing a cluster of suspicious events indicates a cluster of problems.
      • Image of symbol representing a single suspicious event indicates a single problem, or multiple instances of the same problem.
    2. Click the symbols to get more information:

      • Click a large circle symbol to zoom in until you can see symbols that represent individual problems.

      • To see summary information about the problem, click the symbol for an individual problem.

        A pop-up opens, showing the number of instances of the problem, the geographic origin, and a link to view all instances of the problem on the Problems page.

      • To see more details on the problem, click the View link in the pop-up.

  • For a complete list of flags and variable options for CLI commands, see the Command Line Reference.

    Use the oci cloud-guard activity-problem-aggregation request-summarized-activity-problems command and required parameters to get a summary of problems generated by OCI Activity Detector rules:

    oci cloud-guard activity-problem-aggregation request-summarized-activity-problems --compartment-id, -c <compartment_ocid> [OPTIONS]

    Use the oci cloud-guard problem-endpoint-summary list-problem-endpoints command and required parameters to get a list of endpoints associated with a problem:

    oci cloud-guard problem-endpoint-summary list-problem-endpoints --problem-id <problem_ocid> [OPTIONS]

  • Run the RequestSummarizedActivityProblems operation to get a summary of problems generated by OCI Activity Detector rules.

    Run the ListProblemEndpoints operation to get a list of endpoints associated with a problem.