Kron DAM Configuration for Threat Threshold Incident Response
1 min
the severity configurations page is used to define how detected threats are categorized based on their risk scores and behavior patterns on this page, administrators can review and adjust the rules, thresholds, and severity levels that determine how the system classifies and prioritizes threat activity 1 log in to kron dam web gui 2 navigate to the database activity monitoring > database threat analytics menu 3 open the severity configurations tab set risk severity threshold and auto action for severity levels log to log the detected anomalies kill all sessions terminates all active monitored sessions of the user kill session terminates only the session where the anomaly is detected lock user prevents the detected database user from initiating new monitored sessions through dam enforcement policies send notification sends a notification email to recipients defined in the "sc uba send detected anomalies mail recipient" parameter in system config manager suspend user temporarily blocks monitored database activities of the user for the duration specified in the "user suspend formillis" parameter