RE: Re: Cloud Control 13c - Security Compliance

From: Givens, Steven <"Givens,>
Date: Thu, 28 Feb 2019 15:51:15 +0000
Message-ID: <4E9F0A8FD7F0C7479A1E57C826146341A3D3B4DD_at_TCEX21P.fnb.fnni.com>

Not sure about what OEM is expecting, but I wonder if it might be expecting audit_trail= DB, EXTENDED ?

From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Hans Forbrich Sent: Thursday, February 28, 2019 9:45 AM To: oracle-l_at_freelists.org
Subject: [External] Re: Cloud Control 13c - Security Compliance

Consider using Oracle's DBSAT - DB Security Assessment Tool. It is updated quite regularly and likely could identify the issue found in OCC.

https://www.oracle.com/database/technologies/security/dbsat.html [oracle.com]<https://urldefense.proofpoint.com/v2/url?u=https-3A__www.oracle.com_database_technologies_security_dbsat.html&d=DwMD-g&c=LkAXfnqL6_MvrMPL5JzdE3Ild0DUTpmjbCJvMv5_TcQ&r=p64P693r52tzs7tJCmFvOg&m=t9WtGM581dPjxlilneZ1fDA_Ze55UB-dAucl4TFtqlc&s=hd2NCvP28FaEuH0WFWzU0e56rTBBycmv_xs83XXpMiQ&e=>

That said, are you using Unified Auditing? If yes, is it linked properly?

/Hans

On 2019-02-28 8:33 AM, Scott Canaan wrote:

I am playing with security compliance evaluations in Cloud Control 13c (13.2.0.0.0) running on Red Hat 7 Linux. Using the Basic Security Configuration, everything passes (I get a score of 100%), but there is an error and I would like to figure out why.

The error is on the rule Enable Database Auditing. It is "Compliance Rule evaluation failed." I checked the rule in the sysman.mgmt$compliance_standard_rule and it says "Required auditing parameters for database auditing should be set." I believe this is referring to audit_trail, which is set to DB.

Is this telling me that audit_trail is not set properly or that it can't figure out what it is set at? How do I fix this?

Thank you,
Scott Canaan '88
Sr Database Administrator
Information & Technology Services
Finance & Administration
Rochester Institute of Technology
o: (585) 475-7886 | f: (585) 475-7520
srcdco_at_rit.edu<mailto:srcdco_at_rit.edu> | c: (585) 339-8659

CONFIDENTIALITY NOTE: The information transmitted, including attachments, is intended only for the person(s) or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and destroy any copies of this information.

--
http://www.freelists.org/webpage/oracle-l

Received on Thu Feb 28 2019 - 16:51:15 CET

This message: [ Message body ]
Next message: Joan Hsieh: "dbms_scheduler jobs stop running after reboot."
Previous message: Scott Canaan: "RE: Cloud Control 13c - Security Compliance"
In reply to: Hans Forbrich: "Re: Cloud Control 13c - Security Compliance"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message