Alert Destinations

Deliver Alerts to Your Team

DB Audit sends real-time alerts when security events, policy violations, or anomalies are detected. Configure multiple destinations to ensure your team is notified through their preferred channels.

Start Free Trial View Destinations

Real-Time Delivery

Alerts are sent within seconds of detection with intelligent rate limiting to prevent alert fatigue.

Flexible Routing

Route alerts by severity, type, or database to different destinations and teams.

Reliable Delivery

Automatic retries, delivery confirmation, and fallback destinations ensure no alert is missed.

Common Configuration Options

All alert destinations support these common configuration fields in addition to provider-specific settings.

Field	Type	Description
name	string	Unique name for this alert destination
enabled	boolean	Enable or disable this destination
severity_filter	multiselect	Alert severities to send: critical, high, medium, low, info
alert_types	multiselect	Types of alerts: policy_violation, anomaly_detection, threshold_breach, classification_alert
database_filter	array	Limit to specific databases (empty = all)
rate_limit	number	Maximum alerts per minute (1-100), default: 60

Supported Destinations

Slack

Send alerts to Slack channels via incoming webhooks for instant team notification.

Channel Routing Rich Formatting Attachments

Email

Deliver alerts via SMTP or Amazon SES with customizable templates and recipients.

SMTP/SES Support HTML Templates Multiple Recipients

PagerDuty

Create incidents in PagerDuty for on-call escalation and incident management.

Incident Creation Severity Mapping Auto-Resolve

Webhooks

Send alerts to any HTTP endpoint with customizable payloads and headers.

Custom Payloads Auth Headers Retry Logic

Microsoft Teams

Post alerts to Microsoft Teams channels using incoming webhook connectors.

Adaptive Cards Channel Routing Action Buttons

Alert Types

Configure which types of alerts are sent to each destination.

Policy Violations

Alerts when audit policies are violated by database activity.

Anomaly Detection

AI-detected anomalies in user behavior or query patterns.

Threshold Breach

Alerts when metrics exceed configured thresholds.

Classification Alert

New sensitive data discovered or accessed without authorization.

Severity Levels

Alerts are categorized by severity to help prioritize response.

Critical

Immediate action required. Security breach or data exfiltration detected.

High

Urgent attention needed. Significant policy violation or anomaly.

Medium

Should be reviewed. Moderate risk activity detected.

Low

Minor concern. Review during normal operations.

Info

Informational. No action required.

Alert Payload Format

All alert destinations receive a consistent JSON payload with alert details.

          {
  "alert_id": "alert_abc123xyz",
  "timestamp": "2024-01-15T10:30:45.123Z",
  "type": "policy_violation",
  "severity": "high",
  "title": "Bulk Data Access Detected",
  "description": "User accessed more than 10,000 rows in a single query",
  "source": {
    "database": "production-postgres",
    "db_type": "postgresql",
    "host": "db.example.com"
  },
  "actor": {
    "user": "app_user",
    "client_ip": "10.0.1.50",
    "application": "backend-api"
  },
  "event": {
    "query_type": "SELECT",
    "object": "customers",
    "rows_affected": 15000,
    "duration_ms": 2500
  },
  "policy": {
    "id": "policy_bulk_access",
    "name": "Bulk Data Access Policy"
  },
  "links": {
    "dashboard": "https://app.dbaudit.ai/alerts/alert_abc123xyz",
    "event": "https://app.dbaudit.ai/events/evt_456"
  }
}

Ready to Configure Alert Destinations?

Start receiving real-time alerts for database security events in minutes.

Start Free Trial Contact Sales