Oracle Cloud Infrastructure – Security first: Cloud Guard and Security Zones – a first View
Two new Oracle Cloud Infrastructure Cloud Security Services Good news: Oracle has provided two new services for cloud security. Cloud Guard to get an overview of existing possible security breaches and Security Zones, which allows to create a full restricted…Read more
Trivadis LAB: Simple Vagrant Setup of Windows AD Server
One of my biggest problems when I started to look into Kerberos Authentication, Oracle Centrally Managed Users as well Oracle Enterprise User Security was the availability of an Active Directory to setup test cases. It is usually not the core business of an Oracle DBA…
Kerberos Troubleshooting – A few approaches
It is way too long ago since my last blog post. These were or are busy weeks for me. Any way, I finally found some time to start writing a blog post about a special setup for kerberos authentication of Oracle databases. It is about…
Oracle CPU / PSU Advisory July 2019
Recently, just in the middle of the summer holidays, Oracle has released the third Critical Patch Advisory for its products. It seems there’s a lot of work going on in Redwood Shore. Oracle has fixed about 319 security vulnerabilities across their products. The Oracle database…
Oracle CPU / PSU Advisory July 2019
Recently, just in the middle of the summer holidays, Oracle has released the third Critical Patch Advisory for its products. It seems there’s a lot of work going on in Redwood Shore. Oracle has fixed about 319 security vulnerabilities across their products. The Oracle database…
PDB_OS_CREDENTIAL with external table pre-processor
As part of a customer project I am currently enhancing PDB security and isolation. Since OS interaction is necessary, I can not just use lockdown profile to block OS access. The idea is to isolate the PDB with lockdown profiles and allow dedicated OS access….
Oracle Privilege Analysis in action
As Oracle has quite recently announced that Privilege Analysis is now included with the Oracle Database Enterprise Edition licence, I played a little bit with this cool feature to solve infamous ORA-01031: Insufficient privileges error. You can read results of my investigation in the article…
Configure Oracle EUSM to use LDAPS
With the introduction of Oracle 18c, eusm is officially designated as an Enterprise User Security Utility. It is now officially documented of the Enterprise User Security Administrator’s Guide. Before we had to be content with the somewhat sparse MOS note 1085065.1 EUSM, Command Line Tool…
Redo Transport from Oracle 11.2 to 12.2 and SYS password case-sensitivity problems
Case-sensitive passwords were introduced in Oracle Database 11g, causing some misunderstanding and introducing quite a lot of annoying problems for DBAs, even though it was really required to bring level of Oracle’s security to 21st century standards ;). Since then, even more changes were introduced,…
Oracle CPU / PSU Advisory October 2018
Oracle has recently published the Critical Patch Update Advisory for the October 2018. It’s once more quite a heavy update with not less than 301 security vulnerability fixes across the Oracle products. The Oracle database is relatively prominently represented with 3 security vulnerabilities and a…
Social Media @trivadis