Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more
Download
Standard view
Full view
of .
Look up keyword
Like this
8Activity
0 of .
Results for:
No results containing your search query
P. 1
twp auditvault bestpractices 200711

twp auditvault bestpractices 200711

Ratings: (0)|Views: 82|Likes:
Published by Abdel-Gawad Mohamed
Oracle autit vault
Oracle autit vault

More info:

Published by: Abdel-Gawad Mohamed on Apr 13, 2008
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See more
See less

03/08/2015

pdf

text

original

 
CPUBest Practices
 Nov 2007 
 
 
Best Practices
Introduction.........................................................................................................................3Installing Audit Vault.........................................................................................................3Deployment Plan.............................................................................................................4Audit Vault Server......................................................................................................4Audit Vault Collection Agent.....................................................................................5Which Collector(s) Should I Deploy?.........................................................................6Recommended Collector and Database Audit Configuration.....................................8Near Real-Time Alerts....................................................................................................9Near Real-Time Reporting..............................................................................................9Recommendations on ETL process............................................................................9Oracle Database Auditing.................................................................................................10Audit Trail Contents and Locations..............................................................................11Recommended Database Audit Configuration.........................................................12Audit Settings Secure Configuration.........................................................................12Recommended Database Audit Settings...................................................................12Database Auditing Performance...............................................................................14Auditing and the Audit Vault Collectors..................................................................14Managing Audit Data on the Source.................................................................................15Removing Audit Data from the Database.................................................................15Recommended Database Audit Cleanup Periods.....................................................16Removing Audit Data from the Operating System...................................................16Oracle Audit Vault Maintenance......................................................................................18Audit Vault Server Log Files....................................................................................18Audit Vault Collection Agent Log Files...................................................................18Oracle Audit Vault Disaster Recovery.....................................................................20Recommended Recovery Configuration...................................................................20Appendix A. Audit Trail Maintenance Scripts................................................................21Appendix B. Database Source Audit Settings.................................................................28Oracle Audit Vault Best Practices Page 2
 
 
 
Introduction
Oracle Audit Vault automates the audit data consolidation and analysis process, turningaudit data into a key security resource to help address today's security and compliancechallenges. Oracle Audit Vault is built on Oracle’s industry leading database securityand data warehousing products. This paper provides best practices for deploying OracleAudit Vault in your enterprise. Information on deployment architectures and expectedperformance is included. In addition, this paper provides information on the auditingcapabilities of the Oracle database and recommended best practices. Oracle Audit Vaultsupports consolidating audit data from Oracle9i Release 2 and higher databases. Oracleis currently working to support heterogeneous databases in a future release of OracleAudit Vault.Please note that this document will be updated on a regular basis to contain the latestinformation based on development and customer feedback. These best practices will beincluded in future releases of the Oracle Audit Vault documentation.
Installing Audit Vault
The architecture of Audit Vault consists of two major components that work in concert tostore and secure the audit data. They are:
 Audit Vault Server 
– A stand-alone stacked application that contains a datawarehouse built on a customized installation of Oracle Database 10g (10.2.0.3)with Oracle Database Vault providing security and OC4J components to supportan Audit Vault Console and Enterprise Manager’s Database Control.
 Audit Vault Collection Agent 
– The Collection Agent is responsible for managingcollectors and maintaining the Audit Vault wallet.
o
Collectors
- A collector is specific to an audit source and acts as themiddleman between the source and the Audit Vault Server by pulling theaudit trail data from the source and sending it to the Audit Vault Serverover SQL*Net.
 
o
 Audit Vault Wallet 
– The wallet is used to maintain the password for thecollector to connect to the sources to pull audit data from the database.
Oracle Audit Vault Best Practices Page 3
 

Activity (8)

You've already reviewed this. Edit your review.
1 thousand reads
1 hundred reads
Faisal Khan liked this
Faisal Khan liked this
nkjpandya liked this
mardaff1238 liked this
kmarck liked this
zamantatari liked this

You're Reading a Free Preview

Download
scribd
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->