We performed a comparison between IDERA SQL Compliance Manager, Oracle Audit Vault, and Trustwave DbProtect based on real PeerSpot user reviews.
Find out what your peers are saying about IBM, Imperva, Oracle and others in Database Security."The tool can track logins and login failures. I made my own alert so that if there is a certain number of login failures for a server, it emails me. That is really useful. If I want logins to automatically lock out after a certain number of failed attempts, I can know when that happens."
"The initial setup was straightforward."
"The ability to track activity including the SQL statements is definitely valuable. I really like how the database is laid out. It's straightforward. I can query the back-end tables. I've made a few of my own email alerts based on the data and the tables. It's accessible."
"Our clients can see all of their past actions or the wrong activity done on the network. We can load the diagnostics for the business."
"A powerful, flexible solution for database traffic monitoring."
"Technical support is perfect."
"The most valuable feature of Oracle Audit Vault is that it is agentless and enhanced user interface."
"This solution acts as a complete data warehouse for our audit data."
"Our client was scheduled to take a year and a half to set up compliance, but by deploying this product they were able to do the compliance reports within three months."
"Out-of-the-box policies ensure our compliance with standards like SOX, ISO 27001, and so on."
"The feature that I have found most valuable is that it can help us secure our databases."
"The most valuable feature of the solution is that you can have a good view which is provided with a proper division of all your databases, which you can see in Trustwave DbProtect."
"This solution helps our clients to monitor their database use, and detect violations of the policy."
"Transfer and vulnerability scanning are the most valuable features of this product."
"There is an agent that collects the data on SQL Server. Sometimes it will stop collecting. I'm not exactly sure what's happening but I have to go in and manually restart the agent. It would be nice if the central collection server could send a request to the agent to restart."
"I submitted a ticket (last year) about archiving/grooming of old records because the GUI functionality was not working. Per their recommendation, I ended up using a command line to do it."
"What would really a good thing is if you could refer to an external list or table for filtering on, say, certain applications, IP addresses, or host names; or perhaps even combinations of host name and application name."
"Its filtration and navigation are not the best."
"The set up is kind of clunky, in my opinion. It's not really intuitive. If they had either a smoother install or better instructions, that would be nice."
"One feature that is missing is the ability to have a secret server that is always encrypted."
"They should simplify the integration and work with different vendors and mechanisms."
"This solution doesn't audit the network."
"Some of our customers were asking about latency when the application wants to get to the database."
"We would like to see the ability to administer and manage the solution through Enterprise Manager 13c, and development of the dashboards that are generally missing."
"The support could improve."
"Currently, you need two servers: one for Audit Vault and one for the firewall. If they can combine them into one server, it will be great because it is costly to have two servers. It will also make its installation easier. I have heard that in the new version, there will be only one server for both."
"Stability could be improved, we have had some challenges"
"The product does not have encryption or data masking."
"We have not been able to integrate this product with a lot of standard incident response solutions, so an open API would help in this regard."
"I have seen that the tool's installation phase has some problems regarding the versions, specifically the version of SQL."
