Table of Contents
- Title and Copyright Information
- Preface
- Quick Reference for Common Tasks
-
Part I Getting Started with Oracle Audit Vault and Database Firewall
- 1 Changes in Oracle Audit Vault and Database Firewall Release 20
-
2
Introducing Oracle Audit Vault and Database Firewall
- 2.1 Downloading the Latest Version of This Manual
- 2.2 Learning About Oracle Audit Vault and Database Firewall
- 2.3 Supported Platforms for Oracle Audit Vault and Database Firewall
-
2.4
Oracle Audit Vault and Database Firewall System Features
- 2.4.1 About Oracle Audit Vault and Database Firewall
- 2.4.2 Security Technical Implementation Guides for Oracle Audit Vault and Database Firewall
- 2.4.3 System Requirements for Oracle Audit Vault and Database Firewall
- 2.4.4 Supported Targets for Oracle Audit Vault and Database Firewall
- 2.4.5 Oracle Audit Vault and Database Firewall Administrative Features
- 2.4.6 Oracle Audit Vault and Database Firewall Auditing Features
- 2.4.7 Integrating Oracle Audit Vault and Database Firewall with Oracle Key Vault
- 2.5 Separation of Duties
- 2.6 Understanding the Administrator's Role
-
2.7
Planning Your Oracle Audit Vault and Database Firewall System Configuration
- 2.7.1 Guidance for Planning Your Oracle Audit Vault and Database Firewall Configuration
- 2.7.2 Step 1: Plan Your Oracle Audit Vault Server Configuration
- 2.7.3 Step 2: Plan Your Oracle Database Firewall Configuration
- 2.7.4 Step 3: Plan Your Oracle Audit Vault Agent Deployments
- 2.7.5 Step 4: Plan Your Audit Trail Configurations
- 2.7.6 Step 5: Plan for High Availability
- 2.7.7 Step 6: Plan User Accounts and Access Rights
- 2.8 Summary of Configuration Steps
- 2.9 Using Audit Vault Server Console
- 2.10 Using the Audit Vault Command Line Interface
- 2.11 Using the Oracle Audit Vault and Oracle Database Firewall Enterprise Manager Plug-In
- 2.12 Logging In to Oracle AVDF Appliances Through SSH
-
3
General Security Guidelines
- 3.1 Installing Oracle Audit Vault and Database Firewall Securely to Protect Your Data
- 3.2 General Security Recommendations
- 3.3 External Network Dependencies
-
3.4
Considerations for Deploying Network-Based Solutions
- 3.4.1 Monitoring Encrypted Traffic with the Database Firewall
- 3.4.2 Managing Database Firewall Server Side SQL and Context Configurations
- 3.4.3 How Oracle AVDF Works with Various Database Access Paths
- 3.4.4 Database Firewall Configuration for Oracle Database Target Configured in Shared Server Mode
- 3.4.5 Additional Client and Listener Behavior Considerations
- 3.5 Security Considerations for Custom Collector Development
- 3.6 About Setting Transport Layer Security Levels
-
3.7
Certificates
- 3.7.1 Platform Certificates
-
3.7.2
Rotating Audit Vault Agent
Certificates
- 3.7.2.1 About Audit Vault Agent Certificates
- 3.7.2.2 Step 1: Download the Patch for Validating Audit Vault Agent Certificates (Oracle AVDF 20.1 to 20.9)
- 3.7.2.3 Step 2: Check the Validity of the Audit Vault Agent Certificates (Oracle AVDF 20.1 to 20.9)
- 3.7.2.4 Step 3: Patch the Audit Vault Agents to Enable Certificate Rotation (Oracle AVDF 20.1 to 20.6 Only)
- 3.7.2.5 Step 4: Rotate the Audit Vault Agent Certificates
- 3.7.3 Rotating Audit Vault Server Certificates
- 3.7.4 Rotating Database Firewall Certificates
- 3.7.5 Rotating the Audit Vault Server SSO Certificate
- 3.7.6 Creating TLS Proxy Certificates for Database Firewall
-
4
Configuring Audit Vault Server
- 4.1 About Configuring Audit Vault Server
- 4.2 Changing the UI (Console) Certificate for Audit Vault Server
-
4.3
Specifying Initial System Settings and Options
on Audit Vault Server (Required)
- 4.3.1 Specifying the Server Date, Time, and Keyboard Settings
- 4.3.2 Changing the Time Zone
-
4.3.3
Specifying Audit Vault Server System
Settings
- 4.3.3.1 Changing the Primary Audit Vault Server Network Configuration
- 4.3.3.2 Changing the Standby Audit Vault Server Network Configuration
- 4.3.3.3 Configuring or Changing the Audit Vault Server Services
- 4.3.3.4 Changing the Standby Audit Vault Server System Settings
- 4.3.3.5 Changing IP Addresses of Active and Registered Agents
- 4.3.3.6 Updating the Audit Vault Server IP Address in the NTP Configuration File
- 4.3.4 Configuring Audit Vault Server Syslog Destinations
- 4.3.5 Configuring Custom Ports on Network Interfaces
- 4.4 Configuring the Email Notification Service
- 4.5 Configuring Archive Locations and Retention Policies
- 4.6 Managing Archival and Retrieval in High Availability Environments
- 4.7 Defining Resilient Pairs for High Availability
- 4.8 Registering Database Firewall in Audit Vault Server
- 4.9 Testing Audit Vault Server System Operations
- 4.10 Configuring Fiber Channel-Based Storage for Audit Vault Server
- 4.11 Fiber Channel Based Multipath in Oracle AVDF
- 4.12 Adding Network Address Translation IP Addresses to Audit Vault Agent
-
4.13
Monitoring Audit Vault Server
- 4.13.1 Application Auditing
-
4.13.2
Operating System and Repository
Auditing
-
4.13.2.1
OS and Repository Auditing in AVDF
20.13 and later
- 4.13.2.1.1 About Auditing Operating System
- 4.13.2.1.2 Audit Policies Used in Application Auditing
- 4.13.2.1.3 Viewing AVDF OS and Repository Audit Report
- 4.13.2.1.4 Stop AVDF Operating System and Repository Auditing
- 4.13.2.1.5 Start AVDF Operating System and Repository Auditing
- 4.13.2.1.6 About Purging Unified Audit Trail on the Main Audit Vault Server
-
4.13.2.2
OS and Repository Auditing in AVDF
20.7-20.12
- 4.13.2.2.1 About Auditing Operating System
- 4.13.2.2.2 About Auditing Audit Vault Server Repository
- 4.13.2.2.3 About Purging Unified Audit Trail on the Main Audit Vault Server
- 4.13.2.2.4 Storage Requirement for Main Audit Vault Server
- 4.13.2.2.5 Collecting Audit Records to Shadow Audit Vault Server
- 4.13.2.2.6 Deploying the Audit Vault Agent on the Main Audit Vault Server
- 4.13.2.2.7 Adding a Trail to Collect Data From Unified Audit Trail on the Main Audit Vault Server
- 4.13.2.2.8 Adding a Trail to Collect Data from OS Audit Trail on the Main Audit Vault Server
- 4.13.2.2.9 Creating an Alert Policy to Monitor AVREPORTUSER, AVSAUDIT, and ORDS_PUBLIC_USER Users
-
4.13.2.1
OS and Repository Auditing in AVDF
20.13 and later
-
5
Configuring Database Firewall
- 5.1 About Configuring Database Firewall
- 5.2 Introduction to Database Firewall Deployment
- 5.3 Specifying the Audit Vault Server Certificate and IP Address
- 5.4 Managing the Oracle Database Firewall Network and Services Configuration
- 5.5 Setting the Date and Time in Database Firewall
- 5.6 Changing the IP Address on a Single Instance of the Database Firewall Server
- 5.7 Changing the Database Firewall Host Name
- 5.8 Configuring the Database Firewall and Its Traffic Sources on Your Network
- 5.9 Viewing the Status and Diagnostics Report for Database Firewall
- 5.10 Configure and Download the Diagnostics Report File
- 5.11 Configuring Encapsulated Remote Switched Port Analyzer with Database Firewall
-
6
Registering Hosts and Deploying the Agent
- 6.1 About Registering Hosts and Deploying the Agent
- 6.2 Registering Hosts on the Audit Vault Server
-
6.3
Deploying the Audit Vault Agent on Host
Computers
- 6.3.1 Audit Vault Agent Requirements
- 6.3.2 Audit Vault Agent Machine Java Best Practices
- 6.3.3 Validation During Audit Vault Agent Deployment
- 6.3.4 About Deploying the Audit Vault Agent
- 6.3.5 Steps Required to Deploy and Activate the Audit Vault Agent
- 6.3.6 Registering the Host
- 6.3.7 Deploying the Audit Vault Agent
- 6.3.8 Activating and Starting the Audit Vault Agent
- 6.3.9 Changing Host Names
- 6.3.10 Configuring Agent Auto Restart Functionality
- 6.3.11 Configuring Agent Auto Restart Functionality Remotely
- 6.3.12 Check if Audit Vault Agent Has Auto Restart Functionality Enabled
- 6.3.13 Registering and Unregistering the Audit Vault Agent as a Windows Service
- 6.4 Stopping, Starting, and Other Agent Operations
- 6.5 Updating Audit Vault Agent
- 6.6 Deploying Plug-ins and Registering Plug-in Hosts
- 6.7 Deleting Hosts from Audit Vault Server
-
7
Configuring Targets, Audit Trails, and
Database Firewall Monitoring Points
- 7.1 About Configuring Targets
-
7.2
Discovering and Registering Targets and
Creating Groups
-
7.2.1
Discovering Databases for Target
Registration
- 7.2.1.1 About Discovering Databases for Target Registration
- 7.2.1.2 Executing Nmap Scan Commands
- 7.2.1.3 Importing the XML File for Database Discovery as a Super Administrator
- 7.2.1.4 Assigning Databases for Registration in Database Discovery as a Super Administrator
- 7.2.1.5 Registering Assigned Databases in Database Discovery
- 7.2.1.6 Managing Discovered Databases as a Super Administrator
- 7.2.1.7 Viewing the Status of the XML Import Job
- 7.2.2 Registering or Removing Targets in Audit Vault Server
- 7.2.3 Creating a Target Group
- 7.2.4 Modifying a Target Group
- 7.2.5 Controlling Access to Targets and Target Groups
- 7.2.6 Moving a Target from One Host Machine to Another
-
7.2.1
Discovering Databases for Target
Registration
- 7.3 Preparing Targets for Audit Data Collection
- 7.4 Preparing Targets for Use With Global Sets (Previously Called Data Discovery)
- 7.5 Using SQL Firewall with AVDF
-
7.6
Configuring and Managing Audit Trail Collection
- 7.6.1 Prerequisites for Adding Audit Trails in Oracle Audit Vault Server
- 7.6.2 Adding Audit Trails with Agentless Collection
- 7.6.3 Adding Audit Trails with Agent-Based Collection
- 7.6.4 Stopping, Starting, and Autostart of Audit Trails in Oracle Audit Vault Server
- 7.6.5 Checking the Status of Trail Collection on the Audit Vault Server
- 7.6.6 Audit Collection Best Practices
- 7.6.7 Handling New Audit Trails with Expired Audit Records
- 7.6.8 Deleting an Audit Trail
- 7.6.9 Converting Audit Record Formats for Collection
- 7.6.10 Configuring Audit Trail Collection for Oracle Real Application Clusters
- 7.6.11 Configuring Audit Trail Collection for CDBs and PDBs
- 7.6.12 Migrating Audit Trails from Agentless Collection to Agent-Based Collection
- 7.6.13 Migrating Audit Trails to Another Audit Vault Agent
- 7.6.14 Audit Collection Downtime Alerts
-
7.7
Configuring Database Firewall Monitoring
Points
- 7.7.1 About Configuring Database Firewall Monitoring Points for Targets
- 7.7.2 Creating and Configuring a Database Firewall Monitoring Point
- 7.7.3 Modifying a Database Firewall Monitoring Point
- 7.7.4 Starting, Stopping, or Deleting Database Firewall Monitoring Points
- 7.7.5 Viewing the Status of Database Firewall Monitoring Points
- 7.7.6 Finding the Port Number Used by a Database Firewall Monitoring Point
- 7.7.7 Configuring a Database Firewall to Connect to an Oracle Autonomous Database
- 7.8 Configuring Stored Procedure Auditing (SPA)
- 7.9 Configuring Database Firewall for Databases That Use Native Network Encryption
-
7.10
Configuring Advanced Settings for Database
Firewall
- 7.10.1 About Native Network Encryption for Oracle Databases
- 7.10.2 Monitor Native Network Encrypted Traffic Through Database Firewall for Oracle Databases
- 7.10.3 Disabling Encrypted Traffic Monitoring for Oracle Databases
- 7.10.4 Retrieve Session Information for Microsoft SQL Server and Sybase SQL Anywhere Databases
-
7.11
Monitoring TLS Encrypted SQL Traffic
- 7.11.1 Using Default Self Signed Certificates Created During Monitoring Point Creation
- 7.11.2 Configuring Mutual Authentication for Inbound or Outbound TLS Communication
- 7.11.3 Using External Certificates Signed by Certificate Authority
- 7.11.4 Disabling Mutual Authentication for Inbound or Outbound TLS Communication
- 7.11.5 Configuring a TLS Proxy for an Oracle Real Application Clusters Database
- 7.11.6 (Optional) Enabling Common Name Verification for the Database Server
- 7.12 Configuring and Using Database Response Monitoring
- 7.13 Securing the Agent and Oracle Database Target Connection
- 7.14 Upgrading the Target Database
-
8
Using the Host Monitor Agent
- 8.1 About Host Monitoring
-
8.2
Installing and Enabling the Host Monitor
Agent
- 8.2.1 Host Monitor Agent Requirements
- 8.2.2 Validation During Host Monitor Agent Deployment
- 8.2.3 Registering the Host Machine That Will Run the Host Monitor Agent
-
8.2.4
Deploying the Audit Vault Agent and Host
Monitor Agent
-
8.2.4.1
Deploying the Host Monitor Agent on a Windows
Host Machine
- 8.2.4.1.1 Installing OpenSSL
-
8.2.4.1.2
Installing Npcap
- 8.2.4.1.2.1 Installing Npcap for a Fresh Installation of the Host Monitor Agent
- 8.2.4.1.2.2 Updating from Oracle AVDF 12.2 BP13, 12.2 BP14, or 20.1 - 20.4 to Oracle AVDF 20.5 or Later
- 8.2.4.1.2.3 Updating from Oracle AVDF 12.2 BP9 or 12.2 BP10 to Oracle AVDF 20.1 or Later
- 8.2.4.1.2.4 Verifying the Npcap Installation
- 8.2.4.2 Deploying the Host Monitor Agent on a Unix Host Machine
-
8.2.4.1
Deploying the Host Monitor Agent on a Windows
Host Machine
- 8.2.5 Creating a Target for the Host-Monitored Database
- 8.2.6 Creating a Monitoring Point for the Host Monitor Agent
- 8.2.7 Create a Network Audit Trail
- 8.2.8 Check the Value of the network_device_name_for_hostmonitor Attribute
-
8.3
Starting, Stopping, and Other Host Monitor
Agent Operations
- 8.3.1 Starting the Host Monitor Agent
- 8.3.2 Stopping the Host Monitor Agent
- 8.3.3 Changing the Logging Level for a Host Monitor Agent
- 8.3.4 Viewing Host Monitor Agent Status and Details
- 8.3.5 Checking the Status of a Host Monitor Agent Audit Trail
- 8.3.6 Uninstalling a Host Monitor Agent (Unix Hosts Only)
- 8.4 Updating a Host Monitor Agent (Unix Hosts Only)
- 8.5 Using Mutual Authentication for Communication Between the Database Firewall and the Host Monitor Agent
-
9
High Availability in Oracle AVDF
- 9.1 About High Availability in Oracle AVDF
-
9.2
Configuring High Availability for Audit Vault
Servers
- 9.2.1 About High Availability in Audit Vault Servers
- 9.2.2 Prerequisites for Configuring High Availability for Audit Vault Servers
- 9.2.3 Configure the Designated Standby Audit Vault Server
- 9.2.4 Configure the Designated Primary Audit Vault Server
- 9.2.5 Checking the High Availability Status of an Audit Vault Server
- 9.2.6 Post High Availability Pairing Steps
- 9.2.7 Audit Vault Agent Communication with Audit Vault Server in High Availability
- 9.2.8 Swapping Roles Between a Primary and Standby Audit Vault Server
- 9.2.9 Initiating a Switchover Between Primary and Standby Audit Vault Servers
- 9.2.10 Handling a Failover Scenario
- 9.2.11 Unpair Primary and Standby Audit Vault Servers
- 9.2.12 Disabling or Enabling Failover of the Audit Vault Server
- 9.2.13 Archiving and Retrieving in High Availability
- 9.2.14 Backup and Restore of Audit Vault Server in High Availability
- 9.2.15 Removing High Availability Configuration
-
9.3
Configuring High Availability for Database
Firewalls
- 9.3.1 High Availability for Database Firewall
- 9.3.2 High Availability for Database Firewall in Host Monitor Agent or Out of Band Modes
- 9.3.3 Swapping Roles Between Primary and Standby Database Firewalls
- 9.3.4 Unpair Primary and Standby Database Firewalls
- 9.3.5 Configuring High Availability of Database Firewall Instances With Monitoring Points
- 9.4 Configuring High Availability for Database Firewalls in Proxy Mode
- 10 Integration with Third Party SIEM and Log-data Analysis Tools
- 11 Using Oracle Database Firewall with Oracle RAC
-
12
Oracle Audit Vault and Database Firewall on
Oracle Cloud Infrastructure
- 12.1 About Oracle AVDF on Oracle Cloud Infrastructure
- 12.2 Benefits of Provisioning Oracle AVDF on Oracle Cloud Infrastructure
- 12.3 Supported Oracle Cloud Infrastructure Virtual Machine Shapes
- 12.4 Provisioning Oracle AVDF with the Oracle Cloud Marketplace Image
- 12.5 Connecting to Oracle AVDF Instance
- 12.6 Scaling Up Oracle AVDF Instances
- 12.7 Changes in Functionality for Oracle AVDF Instances on OCI
- 12.8 Ports for Communication between Oracle AVDF Components
- 12.9 High Availability for Oracle AVDF Instance
- 12.10 Deploying Audit Vault Agents
- 12.11 Configuring Audit Trail Collection
- 12.12 Deploying Database Firewall for Monitoring
- 12.13 Monitoring Oracle Autonomous Database Services
- 12.14 Monitoring DB Systems on OCI
- 12.15 Backup and Restore of Oracle AVDF Instances in OCI
- 12.16 Archiving and Retrieving Audit Data
- 12.17 Starting or Stopping the Oracle AVDF Instance
- 12.18 Terminating Oracle AVDF Instance
-
13
Oracle Audit Vault And Database Firewall Hybrid Cloud Deployment
- 13.1 Oracle Audit Vault and Database Firewall Hybrid Cloud Deployment and Prerequisites
- 13.2 Opening Ports on Oracle Database Cloud Service
-
13.3
Configuring Hybrid Cloud Target Using TCP
- 13.3.1 Step 1: Registering On-premises Host on the Audit Vault Server
- 13.3.2 Step 2: Installing Audit Vault Agent on Registered On-premises Hosts
- 13.3.3 Step 3: Creating User Accounts on Oracle Database Cloud Service Target Instances
- 13.3.4 Step 4: Setting Up or Reviewing Audit Policies on Target Oracle Database Cloud Service Instances
- 13.3.5 Step 5: Creating Targets on Oracle Audit Vault Server for Oracle Database Cloud Service Instances
- 13.3.6 Step 6: Starting Audit Trail on Audit Vault Server for Oracle Database Cloud Service Instances
- 13.4 Configuring TCPS Connections for DBCS Instances
-
13.5
Configuring Hybrid Cloud Target Using TCPS
- 13.5.1 Step 1: Registering On-premises Host on Oracle Audit Vault Server
- 13.5.2 Step 2: Installing Oracle Audit Vault Agent on Registered On-premises Hosts and Configuring TCPS
- 13.5.3 Step 3: Creating User Accounts on Oracle Database Cloud Service Target Instances
- 13.5.4 Step 4: Setting Up or Reviewing Audit Policies on Target Oracle Database Cloud Service Instances
- 13.5.5 Step 5: Creating Targets on Audit Vault Server for Oracle Database Cloud Service Instances
- 13.5.6 Step 6: Starting Audit Trail on Audit Vault Server for Oracle Database Cloud Services Instances
- 13.6 Configuring Oracle Database Exadata Express Cloud Service Target Using TCPS
-
13.7
Configuring Oracle Database Exadata Express Cloud Service Target Using TCP
- 13.7.1 Step 1: Registering On-premises Hosts on Oracle Audit Vault Server
- 13.7.2 Step 2: Installing Audit Vault Agents on Registered On-Premises Hosts
- 13.7.3 Step 3: Creating User Accounts on Oracle Exadata Express Cloud Target Instances
- 13.7.4 Step 4: Setting Up or Reviewing Audit Policies on Target Oracle Exadata Express Cloud Instances
- 13.7.5 Step 5: Creating Targets on Oracle Audit Vault Servers for Oracle Exadata Express Cloud Instances
- 13.7.6 Step 6: Starting Audit Trail on Oracle Audit Vault Server for Oracle Exadata Express Cloud Instances
-
13.8
Configuring Autonomous Data Warehouse and Autonomous Transaction Processing
- 13.8.1 Step 1: Install Audit Vault Agent on Registered Host
- 13.8.2 Step 2: Create User Accounts on Oracle Cloud Instances
- 13.8.3 Step 3: Create Targets on Audit Vault Server for the Cloud Instances
- 13.8.4 Step 4: Start Audit Trail on Audit Vault Server for the Autonomous Data Warehouse and Autonomous Transaction Processing Cloud Instances
- 13.8.5 Step 5: (Optional) Revoke Audit Vault and Database Firewall Privileges for a User
-
Part II General Administration Tasks
-
14
Managing User Accounts and Access
- 14.1 About Oracle Audit Vault and Database Firewall Administrative Accounts
- 14.2 Security Technical Implementation Guides and Implementation for User Accounts
-
14.3
Configuring Administrative Accounts for Oracle Audit Vault Server
- 14.3.1 Guidelines for Securing Oracle Audit Vault and Database Firewall User Accounts
- 14.3.2 Creating Local Administrative User
- 14.3.3 Viewing the Status of Administrator User Accounts
- 14.3.4 Changing User Account Types for Audit Vault Server
- 14.3.5 Unlocking User Accounts
- 14.3.6 Deleting Oracle Audit Vault Server Administrator Accounts
- 14.4 Configuring sudo Access for Users
- 14.5 Managing User Access Rights to Targets and Groups
- 14.6 Changing User Passwords in Oracle Audit Vault and Database Firewall
- 14.7 Integrating Oracle Audit Vault and Database Firewall with Microsoft Active Directory or OpenLDAP
-
14.8
Configuring Single Sign-On (SSO) for Audit
Vault Server Console Users
- 14.8.1 About SSO for Audit Vault Server Console Users
- 14.8.2 Adding SSO Configurations
- 14.8.3 Copying the Audit Vault Server SSO Certificate to the Identity Provider
- 14.8.4 Enabling SSO Configurations
- 14.8.5 Configuring ORDS After Enabling Oracle Access Manager as the SSO Identity Provider
- 14.8.6 Creating New SSO Users
- 14.8.7 Logging In to the Audit Vault Server Console as an SSO User
- 14.8.8 Modifying SSO Users
- 14.8.9 Disabling an SSO Configuration
- 14.8.10 Configuring ORDS After Disabling Oracle Access Manager as the SSO Identity Provider
- 14.8.11 Modifying an SSO Configuration
- 14.8.12 Deleting an SSO Configuration
- 14.9 Unlocking and Locking the AVSYS User
- 14.10 Updating the Passwords for the AGENTUSR# and AVSRCUSR# Accounts
- 14.11 Rotate the AVREPORTUSER Password
- 14.12 Rotating the ORDS_PUBLIC_USER User Password
-
15
Managing the Audit Vault Server and Database Firewalls
- 15.1 Managing Audit Vault Server Settings, Status, and Maintenance Operations
- 15.2 Changing Oracle Audit Vault Server Network and Services Configurations
- 15.3 Managing Server Connectors for Email and Syslog
- 15.4 Configuring Remote Syslog Over TLS
- 15.5 Archiving and Retrieving Audit Data
- 15.6 Managing Repository Encryption
-
15.7
Backup and Restore of Audit Vault
Server
- 15.7.1 About Backup and Restore of Audit Vault Server
- 15.7.2 Audit Vault Server Backup and Restore in High Availability Environment
- 15.7.3 About Audit Vault Server Backup and Restore Utility
- 15.7.4 Setting Up NFS for Audit Vault Server Backup and Restore
- 15.7.5 Backup of Audit Vault Server
- 15.7.6 Configuring Audit Vault Server Backup
- 15.7.7 Performing Audit Vault Server Backup
- 15.7.8 Monitoring and Validating the Audit Vault Server Backup
- 15.7.9 Automating the Backup Schedule
- 15.7.10 Performing Audit Vault Server Backup in High Availability
- 15.7.11 Restoring from Audit Vault Server Backup
- 15.7.12 Post Restore Tasks
- 15.7.13 Monitor the Restore Process
- 15.7.14 Restoring Audit Vault Server in High Availability
- 15.8 Backing Up and Restoring the Database Firewall
- 15.9 Enabling Oracle Database In-Memory for the Audit Vault Server
- 15.10 Managing Plug-ins
- 15.11 Monitoring and Adding Server Tablespace Space Usage
- 15.12 Monitoring Server Archive Log Disk Space Use
- 15.13 Monitoring Server Flash Recovery Area
- 15.14 Monitoring Jobs
- 15.15 Schedule Maintenance Jobs
- 15.16 Downloading and Using the AVCLI Command Line Interface
- 15.17 Downloading the Oracle Audit Vault and Database Firewall SDK
-
15.18
Managing Database Firewalls
- 15.18.1 Changing the Database Firewall Network or Services Configuration
- 15.18.2 Viewing Network Traffic for a Database Firewall
- 15.18.3 Restarting or Powering Off Database Firewall
- 15.18.4 Removing Database Firewall from Audit Vault Server
- 15.18.5 Fetching an Updated Certificate from Database Firewall
- 15.18.6 Viewing Diagnostics for Database Firewall
- 15.18.7 Resetting Database Firewall
- 15.18.8 Restoring Database Firewall Monitoring Points
- 15.19 System Alerts
-
16
Extending Storage
- 16.1 Extending File System Storage
-
16.2
Extending Storage for Collected
Data
- 16.2.1 Adding Local Disks to the Audit Vault Server ASM Disk Groups
-
16.2.2
Configuring a SAN Repository
- 16.2.2.1 About Configuring a SAN Repository
- 16.2.2.2 Configuring a SAN Server to Communicate with Oracle Audit Vault and Database Firewall
- 16.2.2.3 Registering or Dropping SAN Servers in the Oracle Audit Vault Server
- 16.2.2.4 Discovering Targets on a SAN Server
- 16.2.2.5 Adding or Dropping SAN Disks in the Audit Vault Server Repository
- 17 Tuning the Audit Vault Server
-
14
Managing User Accounts and Access
-
General Reference
-
A
AVCLI Commands Reference
- A.1 About AVCLI Commands
- A.2 Agent Host AVCLI Commands
- A.3 Database Firewall AVCLI Commands
- A.4 Database Firewall Monitors AVCLI Commands
- A.5 Target AVCLI Commands
- A.6 Target Group AVCLI Commands
-
A.7
Audit Trail Collection AVCLI Commands
- A.7.1 About Oracle Audit Trail AVCLI Commands
- A.7.2 DROP TRAIL FOR SECURED TARGET
- A.7.3 LIST TRAIL FOR SECURED TARGET
- A.7.4 START COLLECTION FOR SECURED TARGET
- A.7.5 Create Audit Trail for a Secured Target
- A.7.6 STOP COLLECTION FOR SECURED TARGET
- A.7.7 MOVE COLLECTION FOR SECURED TARGET
- A.7.8 LIST COLLECTION
-
A.8
SMTP Connection AVCLI Commands
- A.8.1 About the SMTP Connection AVCLI Commands
- A.8.2 ALTER SMTP SERVER
- A.8.3 ALTER SMTP SERVER DISABLE
- A.8.4 ALTER SMTP SERVER ENABLE
- A.8.5 ALTER SMTP SERVER SECURE MODE OFF
- A.8.6 ALTER SMTP SERVER SECURE MODE ON
- A.8.7 DROP SMTP SERVER
- A.8.8 LIST ATTRIBUTE OF SMTP SERVER
- A.8.9 REGISTER SMTP SERVER
- A.8.10 TEST SMTP SERVER
- A.9 Security Assessment AVCLI Commands
-
A.10
Security Management AVCLI Commands
- A.10.1 About the Security Management AVCLI Commands
- A.10.2 ALTER DATA ENCRYPTION
- A.10.3 ALTER USER
- A.10.4 GRANT ACCESS
- A.10.5 GRANT ADMIN
- A.10.6 GRANT AUDITOR
- A.10.7 GRANT SUPERADMIN
- A.10.8 GRANT SUPERAUDITOR
- A.10.9 REVOKE ACCESS
- A.10.10 REVOKE ADMIN
- A.10.11 REVOKE AUDITOR
- A.10.12 REVOKE SUPERADMIN
- A.10.13 REVOKE SUPERAUDITOR
- A.10.14 SHOW DATA ENCRYPTION STATUS
- A.11 SAN Storage AVCLI Commands
- A.12 Remote File System AVCLI Commands
- A.13 Server Management AVCLI Commands
- A.14 Collection Plug-In AVCLI Commands
- A.15 General Usage AVCLI Commands
- A.16 Retention Policy AVCLI Commands
- A.17 Alert Policy Management AVCLI Commands
- A.18 Unified Audit Policy AVCLI Commands
- A.19 AVCLI User Commands
- A.20 User Entitlement AVCLI Commands
- B System Configuration Utilities
-
C
Plug-In Reference
- C.1 About Oracle Audit Vault and Database Firewall Plug-ins
-
C.2
Plug-ins That are Shipped with Oracle Audit
Vault and Database Firewall
- C.2.1 About Plug-ins
- C.2.2 Oracle Database Plug-in for Oracle Audit Vault and Database Firewall
- C.2.3 MySQL Plug-in for Oracle Audit Vault and Database Firewall
- C.2.4 Microsoft SQL Server Plug-in for Oracle Audit Vault and Database Firewall
- C.2.5 PostgreSQL Plug-in for Oracle Audit Vault and Database Firewall
- C.2.6 IBM DB2 Plug-in for Oracle Audit Vault and Database Firewall
- C.2.7 SAP Sybase ASE Plug-in for Oracle Audit Vault and Database Firewall
- C.2.8 Quick JSON Target Type for Oracle Audit Vault and Database Firewall
- C.2.9 QuickCSV Collector for Oracle Audit Vault and Database Firewall
- C.2.10 SAP Sybase SQL Anywhere Plug-in for Oracle Audit Vault and Database Firewall
- C.2.11 Oracle Solaris Plug-in for Oracle Audit Vault and Database Firewall
- C.2.12 Linux Plug-in for Oracle Audit Vault and Database Firewall
- C.2.13 IBM AIX Plug-in for Oracle Audit Vault and Database Firewall
- C.2.14 Microsoft Windows Plug-in for Oracle Audit Vault and Database Firewall
- C.2.15 Microsoft Active Directory Plug-in for Oracle Audit Vault and Database Firewall
- C.2.16 Oracle ACFS Plug-in for Oracle Audit Vault and Database Firewall
- C.2.17 Summary of Data Collected for Each Audit Trail Type
-
C.3
Scripts for Oracle AVDF Account Privileges on Targets
- C.3.1 About Scripts for Setting up Oracle Audit Vault and Database Firewall Account Privileges
- C.3.2 Oracle Database Setup Scripts
- C.3.3 Sybase ASE Setup Scripts for Oracle Audit Vault and Database Firewall
- C.3.4 Sybase SQL Anywhere Setup Scripts
- C.3.5 Microsoft SQL Server Setup Scripts
- C.3.6 IBM DB2 for LUW Setup Scripts
- C.4 Audit Collection Consideration
- C.5 Audit Trail Cleanup
- C.6 Procedure Look-Ups: Connect Strings, Collection Attributes, Audit Trail Locations
- C.7 Installing the Audit Vault Agent Under Its Own OS User Account
-
D
Transaction Log Audit Data Collection for
Oracle Database
- D.1 Introduction to Transaction Log Audit Trails for Oracle Database Using Oracle GoldenGate
- D.2 Sizing Guidelines
- D.3 Restricted Use License for Oracle GoldenGate
- D.4 Installing Oracle GoldenGate on Oracle Databases
- D.5 Capturing Transaction Log Data from Oracle Database 12.2.0.1 and Later
- D.6 Downstream Mining to Capture Transaction Log Data from Oracle Database Prior to 12.2.0.1
- D.7 Migrating Transaction Log Audit Trail from Oracle AVDF 12.2 to 20
- D.8 Create User and Grant Relevant Privileges
- D.9 Configure Oracle GoldenGate Parameters for Oracle Database
- D.10 Create a New Credential in the GoldenGate Administration Server
- D.11 Create a New Integrated Extract in Oracle GoldenGate Administration Server
- D.12 Periodic Backup of LogMiner Dictionary
- D.13 Sample Oracle GoldenGate Integrated Extract Parameter Files
- D.14 Audit Trail Creation in Audit Vault Console
- D.15 Audit Trail Cleanup
- D.16 Configure GoldenGate Downstream Mining
-
E
Transaction Log Audit Data Collection for
Microsoft SQL Server
- E.1 Introduction to the Transaction Log Audit Trail Using Oracle GoldenGate for Microsoft SQL Server
- E.2 Sizing Guidelines
- E.3 Restricted Use License for Oracle GoldenGate
- E.4 Installing Oracle GoldenGate for Microsoft SQL Server Databases
- E.5 Capturing Transaction Log Data from Microsoft SQL Server 2012 (Through Version 2019)
- E.6 Creating Audit Trails in the Audit Vault Console
- E.7 Cleaning Up Audit Trails
-
F
Transaction Log Audit Data Collection for
MySQL
- F.1 Introduction to the Transaction Audit Log Trail Using Oracle GoldenGate for MySQL
- F.2 Sizing Guidelines
- F.3 Restricted Use License for Oracle GoldenGate
- F.4 Installing Oracle GoldenGate for MySQL Database
- F.5 Capturing Transaction Log Data from MySQL Server
- F.6 Guidelines for Creating Audit Trails in the Audit Vault Server Console
- F.7 Cleaning Up Audit Trails
- G PostgreSQL Audit Data Collection Reference
-
H
Ports Used by Oracle Audit Vault and Database
Firewall
- H.1 Ports for Deploying Database Firewall for Targets
- H.2 Ports for Services Provided by Audit Vault Server
- H.3 Ports for Services Provided by Database Firewall
- H.4 Ports for External Network Access by Audit Vault Server
- H.5 Ports for External Network Access by Database Firewall
- H.6 Ports for Internal TCP Communication
- I Message Code Dictionary for Oracle Audit Vault and Database Firewall
-
J
Security Technical Implementation Guides
- J.1 About Security Technical Implementation Guides
- J.2 Enabling and Disabling STIG Guidelines on Oracle Audit Vault and Database Firewall
- J.3 Current Implementation of STIG Guidelines on Oracle Audit Vault and Database Firewall
- J.4 Current Implementation of Database STIG Guidelines
- J.5 Additional STIG Guideline Notes
- J.6 Current Implementation of Operating System STIG Guidelines
-
K
Enabling FIPS 140-2 in Oracle AVDF
- K.1 About FIPS and Oracle AVDF
- K.2 Enabling FIPS 140-2 on the Audit Vault Server
- K.3 Enabling FIPS 140-2 in Database Firewall
- K.4 Enabling FIPS 140-2 for Database Firewall Instances in High Availability
- K.5 Verify the Status After Enabling FIPS 140-2 for Database Firewall Instances in High Availability
- K.6 Enabling FIPS 140-2 for Database Firewall Instances in High Availability Deployed in Proxy Mode
-
L
Troubleshooting Oracle Audit Vault and Database Firewall
- L.1 Information to Provide Support When Filing a Service Request
- L.2 Using Oracle Trace File Analyzer (Oracle AVDF 20.1 - 20.11)
- L.3 Using Oracle Trace File Analyzer (Oracle AVDF 20.12 and later)
- L.4 Ability to Boot Into Rescue Mode When Troubleshooting
- L.5 Audit Vault Agent or Host Monitor Agent Is Not Upgraded to the New Release
- L.6 Failure While Building a Host Monitor Agent or Collecting Oracle Database Trails
- L.7 Error When Running Host Monitor Agent Setup
- L.8 Host Monitor Agent Fails to Start
- L.9 Host Monitor Agent Network Trail is in STOPPED State
- L.10 Network Audit Trail Does Not Start on Unix Platforms
- L.11 Partial or No Traffic Seen for an Oracle Database Monitored by Oracle Database Firewall
- L.12 Incomplete or Missing SQL Statements or Network Traffic in Oracle AVDF Reports
- L.13 Agent Activation Request Returns 'host is not registered' Error
- L.14 Unable to Deploy Agent on the Secondary Audit Vault Server
- L.15 'java -jar agent.jar' Failed on Windows Machine
- L.16 Unable to Install the Agent or Generate the agent.jar File
- L.17 Unable to Un-install the Oracle Audit Vault Agent Windows Service
- L.18 Access Denied Error While Installing Agent as a Windows Service
- L.19 Unable to Start the Agent Through the Services Applet on the Control Panel
- L.20 Error When Starting the Agent
- L.21 Alerts on Oracle Database Targets Are Not Triggered for Extended Periods of Time
- L.22 Error When Creating an Audit Policy
- L.23 Connection Problems When Using Oracle Database Firewall Monitoring and Blocking
- L.24 Audit Trail Does Not Start
- L.25 Cannot See Data for Targets
- L.26 Problems Pairing Oracle Database Firewall and Oracle Audit Vault Server
- L.27 User Names Do Not Appear on Database Firewall Reports
- L.28 Alerts Are Not Generated
- L.29 Problems Retrieving or Provisioning Audit Settings on Oracle Target
- L.30 Operation Failed Message Appears When Attempting to Enable Oracle Audit Vault and Database Firewall Policies
- L.31 Out of Memory Error Message During Restore
- L.32 JAVA.IO.IOEXCEPTION Error
- L.33 Failed to Start ASM Instance Error
- L.34 Internal Capacity Exceeded Messages Seen in the /var/log/messages file
- L.35 First Archive Or Retrieve Job After Upgrade
- L.36 Audit Vault Agent Installation Fails After HA Pairing Or Separation
- L.37 Error in Restoring Files
- L.38 DB2 Collector Fails Due to Source Version NULL Errors
- L.39 DB2 Collector Fails Due to Database Connection or Permission Issues
- L.40 ORA-12660 Error While Registering Target
- L.41 Audit Trail Performance Issues Occur After Audit Vault Server Upgrade
- L.42 Failures Due to Dropping Users
- L.43 Failure of Agent Automatic Upgrades
- L.44 Some Services May Not Start After Backup
- L.45 Data Overflow Issues in the Oracle Audit Vault UI
- L.46 Oracle Audit Vault Agent is Unreachable and the Transaction Log Audit Trail is Frozen in Starting Status
- L.47 Scheduled PDF or XLS Reports Result in a Hung State
- L.48 Pending Reports Remain in Scheduled Status
- L.49 Audit Vault Log Displays a Message to Install WinPcap and OpenSSL
- L.50 Error OAV-47409 While Managing Archive Locations
- L.51 Error OAV-47402 While Defining Archive Locations Using NFS Mount Point
- L.52 Audit Trail Stopped After Relocating Windows Event Log Files
- L.53 Missing or Incomplete Client Information in Oracle Database Firewall Logs
- L.54 Issues with Retrieving Session Information Through Clients Connecting to Microsoft SQL Server
- L.55 Performance Issues Due to High Memory Usage
- L.56 httpd Crash Issue on Database Firewall
- L.57 Issue with Retrieval of Return Row Count
- L.58 Unable to Log in to the Oracle AVDF Appliance through SSH
- L.59 Error When Changing IP Address of Management Interface
- L.60 Unable to Configure Microsoft SQL Server XEL Audit Trail After Upgrade
- L.61 Transaction Log Audit Trail Stops Due to an Error While Parsing XML File Containing Emoji
- L.62 Unable to Find the FIPS Status for Database Firewall Instance
- L.63 Unable to Modify the Database Firewall FIPS Mode Through Audit Vault Server Console
- L.64 The FIPS Status on Both the Database Firewall Instances is Different
- L.65 After Restarting Secondary Audit Vault Server, the Primary Instance Fails to Switchover
- L.66 Incorrect Syntax Near Connectivity Entry in Audit Logs
- L.67 Certificate Regenerate Failure Error
- L.68 User Entitlement or Audit Policy Job Stuck in Running State
- L.69 Audit Trails are Toggling Between COLLECTING and UNREACHABLE Status
- L.70 Displaying Job Status Takes Lot of Time in the Audit Vault Server Console
- L.71 Microsoft SQL Server Database Audit Trails are in Stopped State After Upgrading Java
- L.72 Unable to Delete Database Firewall
- L.73 Issue in Language Setting of the Audit Vault Agent
- L.74 Unable to Create a Database Firewall Monitoring Point
- L.75 Issue with Configuring or Managing Oracle AVDF through Oracle Enterprise Manager Cloud Control
- L.76 Unable to Connect to Audit Vault Server through Console or SSH
- L.77 Audit Vault Agent Fails with the ORA-01745 Error
- L.78 Oracle Directory or Table Audit Trail Stops with Error PLS-00201
- L.79 Error with Potential Insecure Path
- L.80 Error "ORA-28000 the Account Is Locked" After Changing the Admin User Password
- L.81 Error OAV-47112 When Trying to Delete an Existing Archive Location
- L.82 Transaction Log Audit Trail Stops Due to XML Parsing Error
- L.83 "-bash: permission denied" Error When Trying to Run Custom Backup Script from /home/oracle
- L.84 Issues Deleting Target Database With Audit Trail Still Running
- L.85 Deleting Audit Records Requires Applying Retention Period to Purge Records
- L.86 Unable to Mount NFS on New AVDF 20.3 Server
- L.87 Alert Email Notifications Are Not Received from Oracle AVDF Server
- L.88 Audit Vault Agent is Stuck in Starting State: Error OAV-46573
- L.89 SSH Becomes Disabled After Enabling FIPS Mode
- L.90 Audit Vault Agent Is Not Reachable from the Audit Vault Server Console
- L.91 Proxy Error When Opening AVDF Console in Web Browser
- L.92 Prevent a Terminal Login Session from Expiring When Connecting to an Audit Vault Server or a Database Firewall Server
- L.93 Microsoft SQL Server Database Audit Trails Are Unreachable
- L.94 Database Firewall Error ODF-10507: TCP Session Re-use
- L.95 Automate Archivelog Deletion in the Audit Vault Server Repository By Using the oracle User
- L.96 OAV-46511: Missing Plug-in for Trail at Agent on Host
- L.97 Initiate Pairing for High Availability Fails with OAV-46599: Internal Error
- L.98 Archive Error OAV-46599 and Internal Error ORA-14400: Partition Key Not Mapped
- L.99 SYSLOG Forwarding for Alerts Isn't Working
- L.100 SYSLOG Forwarding to SIEM Isn't Working
- L.101 Oracle AVDF Reports For Oracle Database Shows UNKNOWN For Session Info If Native Network Encryption Is Enabled On the Database
- L.102 Error: Kernel Out of Memory
- L.103 Increasing the Logical Volume Capacity for a File System
- L.104 Banner Is Incorrect When Logging In as the Support User
- L.105 Can't Install Host Monitor with Error: Failed to Generate Executables for Host Monitor
- L.106 OAV-47704 Error When Dropping a Firewall
- L.107 Installing the Oracle Enterprise Manager Management Agent for Oracle AVDF Fails with an Unzip Not Found Error
- L.108 Audit Trail Error: Unable to Connect to Target to Get Timezone Offset
- L.109 Issue with Phusion Passenger Configuration
- L.110 Diagnostic Report: Checking for Unknown Keys in /usr/local/dbfw/etc/dbfw.conf
- L.111 ODF-10001: Internal Error: Failure in Read from <IP Address>:<Port>: Connection Timed Out in Firewall Server
- L.112 Database Firewall Server /var/log Partition Is Full
- L.113 The tuned.service Status Is Failed in the Database Firewall Health Check
- L.114 Agent IO Error: Network Adapter Can't Establish Connection
- L.115 Error ORA-01403 No Data Found When Adding a Database Firewall Instance to a Target
- L.116 The Order of IP Addresses Changes After Setting Up DNS Servers
- L.117 NTP Is Unreachable on the Audit Vault Server
- L.118 Database Firewall Status Is Running but the Status Is Down on the Audit Vault Server Console
- L.119 Network Audit Trail Is Not Collecting Audit Data When Using the Host Monitor Agent
- L.120 Internal Error When Deploying the Audit Vault Agent
- L.121 Agent Host Is Not Registered
- L.122 A Database Firewall Policy Is Not Blocking Statements Correctly
- L.123 Having Automatic Archiving Enabled Is Giving OAV-47116 Error
- L.124 Network Trail Fails To Be Started Due To Insufficient Permissions Error
- L.125 How To Start an Audit Trail for Audit Trail Type DIRECTORY if the Database is Down
- L.126 After Setting the "SSH Acess" Setting, the SSH Connections are Dropped
- L.127 AVDF Directory Audit Trail Stays Up Collecting Audit Data Even When Target Database Is Shutdown
- L.128 ODF-10717 Is Logged In /var/log/messages File During The Starting Up of Database Firewall
- L.129 Error: Net::ReadTimeout occurred when executing Setup_ha.rb --disable_failover
- L.130 Audit Records Being Re-Read After Upgrade to 20.1
- L.131 Audit Records May Be Skipped After Upgrade to 20.1
- L.132 Processes Still Run After Stopping Audit Trails
- L.133 Unable to Execute the Oracle User Setup Script
- L.134 Loss of Bonding Between Network Interface Cards Upon Creation of Proxy Port
- L.135 Issue Between Returned Number of Rows and Database Response Monitoring Interaction
- L.136 Database Firewall Instance Status "Down" Post-Upgrade to 20.2
- L.137 "Failed to Update" Error Encountered During Oracle AVDF 20.2 Upgrade
- L.138 Significant Time Delay in Captured Traffic by the Database Firewall For Reporting
- L.139 ODF-10719 Error Logged In Messages File After Starting Database Firewall
- L.140 "Server Error 500" on Oracle AVDF Server after Setting Network Time Protocol (NTP)
- L.141 Audit Vault Agent Logs Report IO Error: The Network Adapter Could Not Establish Connection Due To Inactive Database Listener
- L.142 oracle_user_setup.sql Script Does Not Finish
- L.143 Authentication Processing Error When Logging in Due to Excessive Group String Length in Active Directory
- L.144 Discrepancies When Registering a Target Using Internet Explorer as the Browser
- L.145 Datafiles Don't Change to Read Only Mode After Entering Archive Period
- L.146 Datafiles Don't Change to Read Only Mode After Entering Archive Period
- L.147 OAV-46599 Internal Error: The Data Guard Observer Is Not Present When Performing Manual Switchover of Audit Vault Server
- L.148 Mail Notification Fails When Mailing Server is Configured with TLS/SSL
- L.149 Upgrade To Oracle AVDF 20.5 Fails While Executing Database-Migrations.rb
- L.150 How to Disable APEX Developer Console After Upgrading to Oracle APEX 20.1 in Oracle AVDF 20.4
- L.151 AVDF Agent Deployment Failure: Unable to Get Connection from Datasource
- L.152 Audit Vault Agent Installation Fails Due To File System Permissions
- L.153 AVDF Agent Deployment Fails on Target Host with RAC DB Due to Incorrect IP Address Registration
- L.154 Host Monitoring Agent Installation Fails With Error About Inability to Retrieve Agent Details
- L.155 Database Firewall Database Tablespace Growing Quickly in AVDF 20.5
- L.156 AVDF 20.3 - 20.6: Cron File Message - Parent Directory Has Insecure Permissions
- L.157 Audit Vault Agent Fails to Start from Windows Service
- L.158 Error: "tee" Is Not Recognized When Registering Or Starting an Audit Vault Agent on Windows
- L.159 AVDF Agent Management after OS Upgrade
- L.160 Starting a Monitoring Point Causes Error OAV-46649
- L.161 Database Firewall Not Capturing in DAM Mode
- L.162 How to Use Linux to Send E-mails From an AVDF Appliance
- L.163 Capture Bind Variables When Running the Database Firewall in DAM Mode
- L.164 Audit Vault Agent Configuration for a Table Audit Trail in a RAC Environment
- L.165 Database Firewall Certificate Validation Failed
- L.166 Configuring ERSPAN for SQL Traffic Auditing in Monitoring (Out of Band) Mode
- L.167 Recovery Disk Group is Getting Full with Archive Logs
- L.168 Cannot View the Updated Maintenance Job Schedule After Making Changes
- L.169 Oracle AVDF Does Not Failover When Primary Server Is Down
- L.170 Upgrading AVDF from 20.7 to 20.8 Fails When Rebuilding the Index with UTLRP.SQL
- L.171 Executing 'AVBACKUP BACKUP' Command Fails
- L.172 Error OAV-47411 "Export Path" Does Not Exist on Remote File System
- L.173 AVDF 20.4 Error Accessing Target Report: "P107_FIRST_RUN_TIME_AUDIT"
- L.174 Error OAV-47487: Uploading a Certificate to AVDF Fails
- L.175 Troubleshooting Server Error 500 in AVDF
- L.176 User Entitlement Retrieval Job Fails After Twelve Hours
- L.177 Unable to Drop Audit Trail from Unreachable Host
- L.178 Error OAV-47746: Sensitive Objects Data Upload Fails
- L.179 Status "Certificate Validation Failed" Error Shown in Audit Vault Server GUI
- L.180 OAV-47804: Invalid Credentials for User While Registering AD With AVDF
- L.181 "Check Health of Audit Vault Server" Is Seen as Failed in the Job Status
- L.182 User Entitlement Job Fails With Error 'Failed to Get User Entitlement Data From Secured Target Targetname'
- L.183 Agent Fails To Restart Automatically in Oracle AVDF 20.9
- L.184 All Activity Scheduled Reports Fail with "Unknown Report Type" Error
- L.185 Error Encountered While Executing the DB295ExtractionUtil Utility in Oracle AVDF 20.6
-
M
Multiple Network Interface Cards
- M.1 About Multiple Network Interface Cards
- M.2 Enabling SSH on a Secondary Network Interface Card
- M.3 Enabling Agent Connectivity on a Secondary NIC for Audit Vault Server 20.7 and Earlier
- M.4 Enabling Agent Connectivity on a Secondary NIC for Audit Vault Server 20.8 and Later
- M.5 Enabling the Agent for High Availability Connection on a Secondary NIC for Audit Vault Server
- M.6 Bonding of Network Interface Cards
- M.7 Configuring Routing on Secondary Network Interface Cards
- M.8 Changing a New or Secondary NIC to the Management NIC
- N Configuring Quick JSON Target Type to Collect Audit Data from MongoDB
-
O
Audit Vault Agent Auto Start
Configuration
- O.1 Configuring Agent Auto Start on Host Machine With OL7 and OL8
- O.2 Configuring Agent Auto Start on Host Machine With OL6
- O.3 Configuring Agent Auto Start on Host Machine With Windows x64
- O.4 Configuring Agent Auto Start on Host Machine With Solaris [SPARC/x64]
- O.5 Configuring Agent Auto Start on Host Machine With IBM AIX
- P Adding User Content To System Configuration Files
-
A
AVCLI Commands Reference