Submit Search
Upload
12.2 secure configureconsole_adop_changes_aioug_appsdba_nov17
•
3 likes
•
645 views
P
pasalapudi
Follow
Oracle Apps 12.2 Secure Configuration Console & ADOP changes
Read less
Read more
Software
Report
Share
Report
Share
1 of 47
Recommended
Multiple LDAPs Implementation with EBS using OID and OAM
Multiple ldap implementation with ebs using oid
Multiple ldap implementation with ebs using oid
pasalapudi
Deploying Oracle EBS on Prem & on Oracle Cloud
Aioug2017 deploying-ebs-on-prem-and-on-oracle-cloud v2
Aioug2017 deploying-ebs-on-prem-and-on-oracle-cloud v2
pasalapudi
Oracle E-Business Suite On Oracle Cloud
Oracle E-Business Suite On Oracle Cloud
Oracle E-Business Suite On Oracle Cloud
pasalapudi
Oracle E-Business Suite 12.2 Online Patching - Apps DBA Day@AIOUG
Online patching ebs122_aioug_appsdba_nov2017
Online patching ebs122_aioug_appsdba_nov2017
pasalapudi
AIOUG Oracle Cloud Day(IaaS,PaaS,SaaS) - Hyderabad Chapter 11th Feb 2017
veshaal-singh-ebs-oracle cloud(iaas+paas)
veshaal-singh-ebs-oracle cloud(iaas+paas)
aioughydchapter
AIOUG Hyderabad Apps DBA Day
Dmz aa aioug
Dmz aa aioug
pasalapudi123
AIOUG Hyderabad Chapter High Availability Day 2015
Aman sharma hyd_12crac High Availability Day 2015
Aman sharma hyd_12crac High Availability Day 2015
aioughydchapter
Talk about not so popular options in Oracle E-Business Suite that make it even more secure
Securing oracle e-business suite 12.1 and 12.2 technology infrastructure
Securing oracle e-business suite 12.1 and 12.2 technology infrastructure
vasuballa
Recommended
Multiple LDAPs Implementation with EBS using OID and OAM
Multiple ldap implementation with ebs using oid
Multiple ldap implementation with ebs using oid
pasalapudi
Deploying Oracle EBS on Prem & on Oracle Cloud
Aioug2017 deploying-ebs-on-prem-and-on-oracle-cloud v2
Aioug2017 deploying-ebs-on-prem-and-on-oracle-cloud v2
pasalapudi
Oracle E-Business Suite On Oracle Cloud
Oracle E-Business Suite On Oracle Cloud
Oracle E-Business Suite On Oracle Cloud
pasalapudi
Oracle E-Business Suite 12.2 Online Patching - Apps DBA Day@AIOUG
Online patching ebs122_aioug_appsdba_nov2017
Online patching ebs122_aioug_appsdba_nov2017
pasalapudi
AIOUG Oracle Cloud Day(IaaS,PaaS,SaaS) - Hyderabad Chapter 11th Feb 2017
veshaal-singh-ebs-oracle cloud(iaas+paas)
veshaal-singh-ebs-oracle cloud(iaas+paas)
aioughydchapter
AIOUG Hyderabad Apps DBA Day
Dmz aa aioug
Dmz aa aioug
pasalapudi123
AIOUG Hyderabad Chapter High Availability Day 2015
Aman sharma hyd_12crac High Availability Day 2015
Aman sharma hyd_12crac High Availability Day 2015
aioughydchapter
Talk about not so popular options in Oracle E-Business Suite that make it even more secure
Securing oracle e-business suite 12.1 and 12.2 technology infrastructure
Securing oracle e-business suite 12.1 and 12.2 technology infrastructure
vasuballa
Running Oracle E-Business Suite on Kubernetes Docker Cluster
Oracle E-Business Suite on Kubernetes Cluster
Oracle E-Business Suite on Kubernetes Cluster
vasuballa
Oracle Cloud Fundamentals Deploying EBS on Oracle Cloud Overview of EBS Upgrade to R12.2 How Oracle Cloud Helps ?
Using oracle cloud to speed up e business suite 12.2 upgrade
Using oracle cloud to speed up e business suite 12.2 upgrade
vasuballa
How to patching and maintain oracle e-business suite 12.2.5. For Techical Engineer and Developer Users.
Adop and maintenance task presentation 151015
Adop and maintenance task presentation 151015
andreas kuncoro
AIOUG Oracle Cloud Day(IaaS,PaaS,SaaS) - Hyderabad Chapter 11th Feb 2017
Oracle IaaS Overview - AIOUG Hyderabad Chapter
Oracle IaaS Overview - AIOUG Hyderabad Chapter
aioughydchapter
AIOUG Hyderabad Chapter Apps DBA Day
Ebs upgrade-to-12.2 technical-upgrade_best_practices(aioug-aug2015)
Ebs upgrade-to-12.2 technical-upgrade_best_practices(aioug-aug2015)
pasalapudi123
My presentation from COLLABORATE 16 conference
Oracle E-Business Suite R12.2.5 on Database 12c: Install, Patch and Administer
Oracle E-Business Suite R12.2.5 on Database 12c: Install, Patch and Administer
Andrejs Karpovs
Technical Insight into Running E-Business suite on Oracle Cloud
EBS on Oracle Cloud
EBS on Oracle Cloud
vasuballa
My presentation from UKOUG 2016 conference
Oracle E-Business Suite R12.2.6 on Database 12c: Install, Patch and Administer
Oracle E-Business Suite R12.2.6 on Database 12c: Install, Patch and Administer
Andrejs Karpovs
AIOUG Hyderabad Apps DBA Day
Ebs12.2 online patching(aioug_aug2015)
Ebs12.2 online patching(aioug_aug2015)
pasalapudi123
Nowadays having a proper security configuration is a huge challenge, especially looking at the global hacks and personal data leak incidents that happened in IT a while back. Oracle EBS is not perfect and has lots of vulnerabilities covered by Oracle almost every quarter. A very small percent of Apps DBAs know all the features and options available, and usually, do not go over firewall/reverse proxy layer. This presentation is going to cover an overview and recommendations of options and security features that are available and can be used out-of-the-box, and some of the non-trivial configurations that can help to keep your Oracle EBS system protected, per our experience.
Security of Oracle EBS - How I can Protect my System (UKOUG APPS 18 edition)
Security of Oracle EBS - How I can Protect my System (UKOUG APPS 18 edition)
Andrejs Prokopjevs
AIOUG Hyderabad Chapter
Getting optimal performance from oracle e business suite(aioug aug2015)
Getting optimal performance from oracle e business suite(aioug aug2015)
pasalapudi123
AIOUG Hyderabad Chapter High Availability Day 2015
Aioug ha day oct2015 goldengate- High Availability Day 2015
Aioug ha day oct2015 goldengate- High Availability Day 2015
aioughydchapter
AIOUG Hyderabad Apps DBA Day
Editioning use in ebs
Editioning use in ebs
pasalapudi123
Fusion Applications Bare Metal Provisioning - Lessons Learned
Fusion Applications Bare Metal Provisioning - Lessons Learned
Andrejs Karpovs
A quick installation guide for installing FN project and Docker to enable a Function as a Service FaaS platform
Fn project quick installation guide
Fn project quick installation guide
Johan Louwers
This presentation is based on a real life experience migrating Oracle E-Business Suite R12.1 production to AWS. We will talk about: - Certification basics. - How to architect. Recommendations. - Advanced configurations. - R12.2. - Microsoft Azure and Oracle Cloud review. - Horizontal auto-scaling. Is this a supported configuration?
Running Oracle EBS in the cloud (UKOUG APPS16 edition)
Running Oracle EBS in the cloud (UKOUG APPS16 edition)
Andrejs Prokopjevs
This is the two part, certification series covering new features in EM13c from Collaborate 2016
Em13c New Features- One of Two
Em13c New Features- One of Two
Kellyn Pot'Vin-Gorman
AIOUG Hyderabad Chapter High Availability Day 2015
Dg broker & client connectivity - High Availability Day 2015
Dg broker & client connectivity - High Availability Day 2015
aioughydchapter
AOUG_11Nov2016_Challenges_with_EBS12_2
AOUG_11Nov2016_Challenges_with_EBS12_2
Sean Braymen
Oracle WebLogic Server is the application server that offers the best integration with Oracle Database, including strong integration with Oracle Database advanced features. This session covers integration in areas such as Oracle Database’s Application Continuity feature and Oracle WebLogic Server’s Active GridLink for RAC feature, which provide mission-critical applications with high availability despite database outages. It reviews test results demonstrating these benefits and discusses how the integration of Oracle WebLogic Server data sources with database-resident connection pooling allows for better sharing and more-efficient use of Oracle Database resources. As always, this presentation and forward-looking statements are protected by the included Safe Harbor slide.
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
jeckels
The webinar will review a multi-layered framework for PostgreSQL security, with a deeper focus on limiting access to the database and data, as well as securing the data. Using the popular AAA (Authentication, Authorisation, Auditing) framework EnterpriseDB will cover: - Best practices for authentication (trust, certificate, MD5, Scram, etc). - Advanced approaches, such as password profiles. - Deep dive of authorisation and data access control for roles, database objects (tables, etc), view usage, row-level security, and data redaction. - Auditing, encryption, and SQL injection attack prevention
Kangaroot EDB Webinar Best Practices in Security with PostgreSQL
Kangaroot EDB Webinar Best Practices in Security with PostgreSQL
Kangaroot
Dallas Oracle User Group presentation. Oracle Enterprise Manager 13c Snap Clone
Clone Oracle Databases In Minutes Without Risk Using Enterprise Manager 13c
Clone Oracle Databases In Minutes Without Risk Using Enterprise Manager 13c
Alfredo Krieg
More Related Content
What's hot
Running Oracle E-Business Suite on Kubernetes Docker Cluster
Oracle E-Business Suite on Kubernetes Cluster
Oracle E-Business Suite on Kubernetes Cluster
vasuballa
Oracle Cloud Fundamentals Deploying EBS on Oracle Cloud Overview of EBS Upgrade to R12.2 How Oracle Cloud Helps ?
Using oracle cloud to speed up e business suite 12.2 upgrade
Using oracle cloud to speed up e business suite 12.2 upgrade
vasuballa
How to patching and maintain oracle e-business suite 12.2.5. For Techical Engineer and Developer Users.
Adop and maintenance task presentation 151015
Adop and maintenance task presentation 151015
andreas kuncoro
AIOUG Oracle Cloud Day(IaaS,PaaS,SaaS) - Hyderabad Chapter 11th Feb 2017
Oracle IaaS Overview - AIOUG Hyderabad Chapter
Oracle IaaS Overview - AIOUG Hyderabad Chapter
aioughydchapter
AIOUG Hyderabad Chapter Apps DBA Day
Ebs upgrade-to-12.2 technical-upgrade_best_practices(aioug-aug2015)
Ebs upgrade-to-12.2 technical-upgrade_best_practices(aioug-aug2015)
pasalapudi123
My presentation from COLLABORATE 16 conference
Oracle E-Business Suite R12.2.5 on Database 12c: Install, Patch and Administer
Oracle E-Business Suite R12.2.5 on Database 12c: Install, Patch and Administer
Andrejs Karpovs
Technical Insight into Running E-Business suite on Oracle Cloud
EBS on Oracle Cloud
EBS on Oracle Cloud
vasuballa
My presentation from UKOUG 2016 conference
Oracle E-Business Suite R12.2.6 on Database 12c: Install, Patch and Administer
Oracle E-Business Suite R12.2.6 on Database 12c: Install, Patch and Administer
Andrejs Karpovs
AIOUG Hyderabad Apps DBA Day
Ebs12.2 online patching(aioug_aug2015)
Ebs12.2 online patching(aioug_aug2015)
pasalapudi123
Nowadays having a proper security configuration is a huge challenge, especially looking at the global hacks and personal data leak incidents that happened in IT a while back. Oracle EBS is not perfect and has lots of vulnerabilities covered by Oracle almost every quarter. A very small percent of Apps DBAs know all the features and options available, and usually, do not go over firewall/reverse proxy layer. This presentation is going to cover an overview and recommendations of options and security features that are available and can be used out-of-the-box, and some of the non-trivial configurations that can help to keep your Oracle EBS system protected, per our experience.
Security of Oracle EBS - How I can Protect my System (UKOUG APPS 18 edition)
Security of Oracle EBS - How I can Protect my System (UKOUG APPS 18 edition)
Andrejs Prokopjevs
AIOUG Hyderabad Chapter
Getting optimal performance from oracle e business suite(aioug aug2015)
Getting optimal performance from oracle e business suite(aioug aug2015)
pasalapudi123
AIOUG Hyderabad Chapter High Availability Day 2015
Aioug ha day oct2015 goldengate- High Availability Day 2015
Aioug ha day oct2015 goldengate- High Availability Day 2015
aioughydchapter
AIOUG Hyderabad Apps DBA Day
Editioning use in ebs
Editioning use in ebs
pasalapudi123
Fusion Applications Bare Metal Provisioning - Lessons Learned
Fusion Applications Bare Metal Provisioning - Lessons Learned
Andrejs Karpovs
A quick installation guide for installing FN project and Docker to enable a Function as a Service FaaS platform
Fn project quick installation guide
Fn project quick installation guide
Johan Louwers
This presentation is based on a real life experience migrating Oracle E-Business Suite R12.1 production to AWS. We will talk about: - Certification basics. - How to architect. Recommendations. - Advanced configurations. - R12.2. - Microsoft Azure and Oracle Cloud review. - Horizontal auto-scaling. Is this a supported configuration?
Running Oracle EBS in the cloud (UKOUG APPS16 edition)
Running Oracle EBS in the cloud (UKOUG APPS16 edition)
Andrejs Prokopjevs
This is the two part, certification series covering new features in EM13c from Collaborate 2016
Em13c New Features- One of Two
Em13c New Features- One of Two
Kellyn Pot'Vin-Gorman
AIOUG Hyderabad Chapter High Availability Day 2015
Dg broker & client connectivity - High Availability Day 2015
Dg broker & client connectivity - High Availability Day 2015
aioughydchapter
AOUG_11Nov2016_Challenges_with_EBS12_2
AOUG_11Nov2016_Challenges_with_EBS12_2
Sean Braymen
Oracle WebLogic Server is the application server that offers the best integration with Oracle Database, including strong integration with Oracle Database advanced features. This session covers integration in areas such as Oracle Database’s Application Continuity feature and Oracle WebLogic Server’s Active GridLink for RAC feature, which provide mission-critical applications with high availability despite database outages. It reviews test results demonstrating these benefits and discusses how the integration of Oracle WebLogic Server data sources with database-resident connection pooling allows for better sharing and more-efficient use of Oracle Database resources. As always, this presentation and forward-looking statements are protected by the included Safe Harbor slide.
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
jeckels
What's hot
(20)
Oracle E-Business Suite on Kubernetes Cluster
Oracle E-Business Suite on Kubernetes Cluster
Using oracle cloud to speed up e business suite 12.2 upgrade
Using oracle cloud to speed up e business suite 12.2 upgrade
Adop and maintenance task presentation 151015
Adop and maintenance task presentation 151015
Oracle IaaS Overview - AIOUG Hyderabad Chapter
Oracle IaaS Overview - AIOUG Hyderabad Chapter
Ebs upgrade-to-12.2 technical-upgrade_best_practices(aioug-aug2015)
Ebs upgrade-to-12.2 technical-upgrade_best_practices(aioug-aug2015)
Oracle E-Business Suite R12.2.5 on Database 12c: Install, Patch and Administer
Oracle E-Business Suite R12.2.5 on Database 12c: Install, Patch and Administer
EBS on Oracle Cloud
EBS on Oracle Cloud
Oracle E-Business Suite R12.2.6 on Database 12c: Install, Patch and Administer
Oracle E-Business Suite R12.2.6 on Database 12c: Install, Patch and Administer
Ebs12.2 online patching(aioug_aug2015)
Ebs12.2 online patching(aioug_aug2015)
Security of Oracle EBS - How I can Protect my System (UKOUG APPS 18 edition)
Security of Oracle EBS - How I can Protect my System (UKOUG APPS 18 edition)
Getting optimal performance from oracle e business suite(aioug aug2015)
Getting optimal performance from oracle e business suite(aioug aug2015)
Aioug ha day oct2015 goldengate- High Availability Day 2015
Aioug ha day oct2015 goldengate- High Availability Day 2015
Editioning use in ebs
Editioning use in ebs
Fusion Applications Bare Metal Provisioning - Lessons Learned
Fusion Applications Bare Metal Provisioning - Lessons Learned
Fn project quick installation guide
Fn project quick installation guide
Running Oracle EBS in the cloud (UKOUG APPS16 edition)
Running Oracle EBS in the cloud (UKOUG APPS16 edition)
Em13c New Features- One of Two
Em13c New Features- One of Two
Dg broker & client connectivity - High Availability Day 2015
Dg broker & client connectivity - High Availability Day 2015
AOUG_11Nov2016_Challenges_with_EBS12_2
AOUG_11Nov2016_Challenges_with_EBS12_2
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Similar to 12.2 secure configureconsole_adop_changes_aioug_appsdba_nov17
The webinar will review a multi-layered framework for PostgreSQL security, with a deeper focus on limiting access to the database and data, as well as securing the data. Using the popular AAA (Authentication, Authorisation, Auditing) framework EnterpriseDB will cover: - Best practices for authentication (trust, certificate, MD5, Scram, etc). - Advanced approaches, such as password profiles. - Deep dive of authorisation and data access control for roles, database objects (tables, etc), view usage, row-level security, and data redaction. - Auditing, encryption, and SQL injection attack prevention
Kangaroot EDB Webinar Best Practices in Security with PostgreSQL
Kangaroot EDB Webinar Best Practices in Security with PostgreSQL
Kangaroot
Dallas Oracle User Group presentation. Oracle Enterprise Manager 13c Snap Clone
Clone Oracle Databases In Minutes Without Risk Using Enterprise Manager 13c
Clone Oracle Databases In Minutes Without Risk Using Enterprise Manager 13c
Alfredo Krieg
Come to this session to learn recommendations for auditing, monitoring, and securing your Oracle E-Business Suite environment and sensitive data. Configuration guidelines for monitoring and auditing activity in your Oracle E-Business Suite application and database are provided. The session provides an overview of Oracle’s secure configuration guidelines, updates to the secure configuration scripts, and optional security integrations. It wraps up with a summary of some of the new security features available in Oracle E-Business Suite 12.2 including enhancements for proxy user functionality and ways to reduce your attack surface by reducing cookie scope, allowed JavaServer Pages, and external redirects.
OOW15 - managing oracle e-business suite auditing and security
OOW15 - managing oracle e-business suite auditing and security
vasuballa
Second part of two part series for certification from Collaborate 2016
Em13c New Features- Two of Two
Em13c New Features- Two of Two
Kellyn Pot'Vin-Gorman
Oracle Database Tunning
Con7091 sql tuning for expert db as-oow17_oct2_1507314871265001m0x4
Con7091 sql tuning for expert db as-oow17_oct2_1507314871265001m0x4
asifanw
If you use both Oracle Database and MySQL and are wondering how you can more efficiently monitor and manage both databases, you're not alone. We have the answer: powerful, integrated tools! MySQL Enterprise Monitor helps you automate the management of your MySQL infrastructure and improve the performance and availability of your applications. The MySQL Plugin for Oracle Enterprise Manager (OEM) complements this by combining MySQL monitoring within OEM for comprehensive management of Oracle systems, reducing the cost and complexity of managing a mix of MySQL and Oracle technologies. During the webinar, MySQL and Oracle users will learn how to leverage the best of both MySQL Enterprise Monitor and MySQL Plugin for Oracle Enterprise Manager in order to efficiently monitor and manage their MySQL databases within their Oracle environment, whether on premise or in Oracle Cloud.
MySQL in oracle_environments(Part 2): MySQL Enterprise Monitor & Oracle Enter...
MySQL in oracle_environments(Part 2): MySQL Enterprise Monitor & Oracle Enter...
OracleMySQL
Dos and Don'ts of secure MySQL deployment
2014 OpenSuse Conf: Protect your MySQL Server
2014 OpenSuse Conf: Protect your MySQL Server
Georgi Kodinov
SPTechCon SFO 2012 - Understanding the Five Layers of SharePoint Security
SPTechCon SFO 2012 - Understanding the Five Layers of SharePoint Security
Michael Noel
Security for SharePoint in an Insecure World - SharePoint Connections Amsterd...
Security for SharePoint in an Insecure World - SharePoint Connections Amsterd...
Michael Noel
It is a new world, where secure configuration is no longer optional, and you must reduce your attack surface. Going forward, many Oracle E-Business Suite security features will now be turned on by default. To further assist you with deploying Oracle E-Business Suite securely, Oracle is now providing a secure configuration management console. Under certain conditions, access to Oracle E-Business Suite will be limited until your Oracle Applications DBA or system administrator corrects or acknowledges the errors and warnings in the console. Come to this session to learn about the new secure configuration management console and guidelines for auditing, monitoring, and securing your Oracle E-Business Suite environment and sensitive data.
OOW16 - Ready or Not: Applying Secure Configuration to Oracle E-Business Suit...
OOW16 - Ready or Not: Applying Secure Configuration to Oracle E-Business Suit...
vasuballa
One of the biggest advantage of using SharePoint as a Document Management and collaboration environment is that a robust security and permissions structure is built-in to the application itself. Authenticating and authorizing users is a fairly straightforward task, and administration of security permissions is simplified. Too often, however, security for SharePoint stops there, and organizations don’t pay enough attention to all of the other considerations that are part of a SharePoint Security stack, and more often than not don’t properly build them into a deployment. This includes such diverse categories including Edge, Transport, Infrastructure, Data, and Rights Management Security, all areas that are often neglected but are nonetheless extremely important. This session discusses the entire stack of Security within SharePoint, from best practices around managing permissions and ACLs to comply with Role Based Access Control, to techniques to secure inbound access to externally-facing SharePoint sites. The session is designed to be comprehensive, and includes all major security topics in SharePoint and a discussion of various real-world designs that are built to be secure.
SEASPC 2011 - SharePoint Security in an Insecure World: Understanding the Fiv...
SEASPC 2011 - SharePoint Security in an Insecure World: Understanding the Fiv...
Michael Noel
security-checklist-database
security-checklist-database
Mohsen B
This session provides the developer centric view on MySQL 8.0 security. MySQL 8.0 is continuing in the direction set by MySQL 5.7: to be secure by default. The security development team has added quite a few interesting features to the core MySQL server, like for example SQL roles or making the ACL statements atomic.We will discuss the roles implementation and consider some of the interesting...
Pl17: MySQL 8.0: security
Pl17: MySQL 8.0: security
Georgi Kodinov
AUSPC 2013 - Understanding the Five Layers of SharePoint Security
AUSPC 2013 - Understanding the Five Layers of SharePoint Security
Michael Noel
East Coast Oracle Users Group 2015 - Oracle Enterprise Manager 12c security framework can be quite overwhelming for the EM administrator. It's often hard to understand how the components interact and how to best leverage them for your organization. Learn how to take advantage of Enterprise Manager roles, groups and named credentials to properly grant permissions and privileges to users. Utilizing EM privileges, we'll show how you can safely grant access to application teams and developers, without the worry of changes being made.
Oracle Enterprise Manager Security: A Practitioners Guide
Oracle Enterprise Manager Security: A Practitioners Guide
Courtney Llamas
Oracle ORAchk & EXAchk health checks
Oracle ORAchk & EXAchk overview
Oracle ORAchk & EXAchk overview
Gareth Chapman
Talk presented @ SQLPort (30-09-2017)
SQL Server 2017 CLR
SQL Server 2017 CLR
Eduardo Piairo
This is a comprehensive presentation for the Oracle Exachk tool which covers automation and how to cover best practices and what options are features are available with the same
Exachk Customer Presentation
Exachk Customer Presentation
Sandesh Rao
We will go over the layout of the MySQL code base, roughly following the query execution path. We will also cover how to extend MySQL with both built-in and pluggable add-ons.
OUGLS 2016: Guided Tour On The MySQL Source Code
OUGLS 2016: Guided Tour On The MySQL Source Code
Georgi Kodinov
EM13c New Features Talk from HotSos 2016
Em13c features- HotSos 2016
Em13c features- HotSos 2016
Kellyn Pot'Vin-Gorman
Similar to 12.2 secure configureconsole_adop_changes_aioug_appsdba_nov17
(20)
Kangaroot EDB Webinar Best Practices in Security with PostgreSQL
Kangaroot EDB Webinar Best Practices in Security with PostgreSQL
Clone Oracle Databases In Minutes Without Risk Using Enterprise Manager 13c
Clone Oracle Databases In Minutes Without Risk Using Enterprise Manager 13c
OOW15 - managing oracle e-business suite auditing and security
OOW15 - managing oracle e-business suite auditing and security
Em13c New Features- Two of Two
Em13c New Features- Two of Two
Con7091 sql tuning for expert db as-oow17_oct2_1507314871265001m0x4
Con7091 sql tuning for expert db as-oow17_oct2_1507314871265001m0x4
MySQL in oracle_environments(Part 2): MySQL Enterprise Monitor & Oracle Enter...
MySQL in oracle_environments(Part 2): MySQL Enterprise Monitor & Oracle Enter...
2014 OpenSuse Conf: Protect your MySQL Server
2014 OpenSuse Conf: Protect your MySQL Server
SPTechCon SFO 2012 - Understanding the Five Layers of SharePoint Security
SPTechCon SFO 2012 - Understanding the Five Layers of SharePoint Security
Security for SharePoint in an Insecure World - SharePoint Connections Amsterd...
Security for SharePoint in an Insecure World - SharePoint Connections Amsterd...
OOW16 - Ready or Not: Applying Secure Configuration to Oracle E-Business Suit...
OOW16 - Ready or Not: Applying Secure Configuration to Oracle E-Business Suit...
SEASPC 2011 - SharePoint Security in an Insecure World: Understanding the Fiv...
SEASPC 2011 - SharePoint Security in an Insecure World: Understanding the Fiv...
security-checklist-database
security-checklist-database
Pl17: MySQL 8.0: security
Pl17: MySQL 8.0: security
AUSPC 2013 - Understanding the Five Layers of SharePoint Security
AUSPC 2013 - Understanding the Five Layers of SharePoint Security
Oracle Enterprise Manager Security: A Practitioners Guide
Oracle Enterprise Manager Security: A Practitioners Guide
Oracle ORAchk & EXAchk overview
Oracle ORAchk & EXAchk overview
SQL Server 2017 CLR
SQL Server 2017 CLR
Exachk Customer Presentation
Exachk Customer Presentation
OUGLS 2016: Guided Tour On The MySQL Source Code
OUGLS 2016: Guided Tour On The MySQL Source Code
Em13c features- HotSos 2016
Em13c features- HotSos 2016
Recently uploaded
Tim Combridge from Sensible Giraffe and Salesforce Ben presents some important tips that all developers should know when dealing with Flows in Salesforce.
Advanced Flow Concepts Every Developer Should Know
Advanced Flow Concepts Every Developer Should Know
Peter Caitens
COVID-19 had an unprecedented impact on scientific collaboration. The pandemic and its broad response from the scientific community has forged new relationships among public health practitioners, mathematical modelers, and scientific computing specialists, while revealing critical gaps in exploiting advanced computing systems to support urgent decision making. Informed by our team’s work in applying high-performance computing in support of public health decision makers during the COVID-19 pandemic, we present how Globus technologies are enabling the development of an open science platform for robust epidemic analysis, with the goal of collaborative, secure, distributed, on-demand, and fast time-to-solution analyses to support public health.
Developing Distributed High-performance Computing Capabilities of an Open Sci...
Developing Distributed High-performance Computing Capabilities of an Open Sci...
Globus
Experience our free, in-depth three-part Tendenci Platform Corporate Membership Management workshop series! In Session 1 on May 14th, 2024, we began with an Introduction and Setup, mastering the configuration of your Corporate Membership Module settings to establish membership types, applications, and more. Then, on May 16th, 2024, in Session 2, we focused on binding individual members to a Corporate Membership and Corporate Reps, teaching you how to add individual members and assign Corporate Representatives to manage dues, renewals, and associated members. Finally, on May 28th, 2024, in Session 3, we covered questions and concerns, addressing any queries or issues you may have. For more Tendenci AMS events, check out www.tendenci.com/events
Corporate Management | Session 3 of 3 | Tendenci AMS
Corporate Management | Session 3 of 3 | Tendenci AMS
Tendenci - The Open Source AMS (Association Management Software)
Best Video, Film-TV production management & Screenplay software. Take control of your storywriting & film production now. Manage & Collaborate projects with your team. Send call sheet, schedule scenes, attain new productivity peak. It's World’s #1st Cross-Platform Application For Film Makers & Writers.
Studiovity film pre-production and screenwriting software
Studiovity film pre-production and screenwriting software
info611746
Companies strive to enhance customer engagement through frequent feature updates in today's fast-paced digital landscape. The imperative to deliver reliable, bug-free applications quickly is paramount. To meet these demands, a robust testing process is indispensable.
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
kalichargn70th171
The Earth System Grid Federation (ESGF) is a global network of data servers that archives and distributes the planet’s largest collection of Earth system model output for thousands of climate and environmental scientists worldwide. Many of these petabyte-scale data archives are located in proximity to large high-performance computing (HPC) or cloud computing resources, but the primary workflow for data users consists of transferring data, and applying computations on a different system. As a part of the ESGF 2.0 US project (funded by the United States Department of Energy Office of Science), we developed pre-defined data workflows, which can be run on-demand, capable of applying many data reduction and data analysis to the large ESGF data archives, transferring only the resultant analysis (ex. visualizations, smaller data files). In this talk, we will showcase a few of these workflows, highlighting how Globus Flows can be used for petabyte-scale climate analysis.
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Globus
NetSage is an open privacy-aware network measurement, analysis, and visualization service designed to help end-users visualize and reason about large data transfers. NetSage traditionally has used a combination of passive measurements, including SNMP and flow data, as well as active measurements, mainly perfSONAR, to provide longitudinal network performance data visualization. It has been deployed by dozens of networks world wide, and is supported domestically by the Engagement and Performance Operations Center (EPOC), NSF #2328479. We have recently expanded the NetSage data sources to include logs for Globus data transfers, following the same privacy-preserving approach as for Flow data. Using the logs for the Texas Advanced Computing Center (TACC) as an example, this talk will walk through several different example use cases that NetSage can answer, including: Who is using Globus to share data with my institution, and what kind of performance are they able to achieve? How many transfers has Globus supported for us? Which sites are we sharing the most data with, and how is that changing over time? How is my site using Globus to move data internally, and what kind of performance do we see for those transfers? What percentage of data transfers at my institution used Globus, and how did the overall data transfer performance compare to the Globus users?
Understanding Globus Data Transfers with NetSage
Understanding Globus Data Transfers with NetSage
Globus
Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pills in Al Ain, Abortion Pills Available in Al Ain. Cytotec, Unwanted Pregnancy Kit & Mtp Kit !! Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pills in Al Ain, Abortion Pills Available in Al Ain. Cytotec, Unwanted Pregnancy Kit & Mtp Kit !!
Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pill...
Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pill...
Abortion Clinic
As part of the DOE Integrated Research Infrastructure (IRI) program, NERSC at Lawrence Berkeley National Lab and ALCF at Argonne National Lab are working closely with General Atomics on accelerating the computing requirements of the DIII-D experiment. As part of the work the team is investigating ways to speedup the time to solution for many different parts of the DIII-D workflow including how they run jobs on HPC systems. One of these routes is looking at Globus Compute as a way to replace the current method for managing tasks and we describe a brief proof of concept showing how Globus Compute could help to schedule jobs and be a tool to connect compute at different facilities.
Globus Compute wth IRI Workflows - GlobusWorld 2024
Globus Compute wth IRI Workflows - GlobusWorld 2024
Globus
Listen to the keynote address and hear about the latest developments from Rachana Ananthakrishnan and Ian Foster who review the updates to the Globus Platform and Service, and the relevance of Globus to the scientific community as an automation platform to accelerate scientific discovery.
GlobusWorld 2024 Opening Keynote session
GlobusWorld 2024 Opening Keynote session
Globus
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I didn't get rich from it but it did have 63K downloads (powered possible tens of thousands of websites).
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
Juraj Vysvader
The U.S. Geological Survey (USGS) has made substantial investments in meeting evolving scientific, technical, and policy driven demands on storing, managing, and delivering data. As these demands continue to grow in complexity and scale, the USGS must continue to explore innovative solutions to improve its management, curation, sharing, delivering, and preservation approaches for large-scale research data. Supporting these needs, the USGS has partnered with the University of Chicago-Globus to research and develop advanced repository components and workflows leveraging its current investment in Globus. The primary outcome of this partnership includes the development of a prototype enterprise repository, driven by USGS Data Release requirements, through exploration and implementation of the entire suite of the Globus platform offerings, including Globus Flow, Globus Auth, Globus Transfer, and Globus Search. This presentation will provide insights into this research partnership, introduce the unique requirements and challenges being addressed and provide relevant project progress.
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...
Globus
Games are powerful teaching tools, fostering hands-on engagement and fun. But they require careful consideration to succeed. Join me to explore factors in running and selecting games, ensuring they serve as effective teaching tools. Learn to maintain focus on learning objectives while playing, and how to measure the ROI of gaming in education. Discover strategies for pitching gaming to leadership. This session offers insights, tips, and examples for coaches, team leads, and enterprise leaders seeking to teach from simple to complex concepts.
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...
Shahin Sheidaei
In this slide, we show the simulation example and the way to compile this solver. In this solver, the Helmholtz equation can be solved by helmholtzFoam. Also, the Helmholtz equation with uniformly dispersed bubbles can be simulated by helmholtzBubbleFoam.
OpenFOAM solver for Helmholtz equation, helmholtzFoam / helmholtzBubbleFoam
OpenFOAM solver for Helmholtz equation, helmholtzFoam / helmholtzBubbleFoam
takuyayamamoto1800
Key takeaways: Challenges of building platforms and the benefits of platformless. Key principles of platformless, including API-first, cloud-native middleware, platform engineering, and developer experience. How Choreo enables the platformless experience. How key concepts like application architecture, domain-driven design, zero trust, and cell-based architecture are inherently a part of Choreo. Demo of an end-to-end app built and deployed on Choreo.
Accelerate Enterprise Software Engineering with Platformless
Accelerate Enterprise Software Engineering with Platformless
WSO2
Software Engineering, Software Consulting, Tech Lead. Spring Boot, Spring Cloud, Spring Core, Spring JDBC, Spring Security, Spring Transaction, Spring MVC, Log4j, REST/SOAP WEB-SERVICES.
Vitthal Shirke Microservices Resume Montevideo
Vitthal Shirke Microservices Resume Montevideo
Vitthal Shirke
AI/ML Infra Meetup May. 23, 2024 Organized by Alluxio For more Alluxio Events: https://www.alluxio.io/events/ Speaker: - Eric Wang (Software Engineer, @Uber) Uber has numerous deep learning models, most of which are highly complex with many layers and a vast number of features. Understanding how these models work is challenging and demands significant resources to experiment with various training algorithms and feature sets. With ML explainability, the ML team aims to bring transparency to these models, helping to clarify their predictions and behavior. This transparency also assists the operations and legal teams in explaining the reasons behind specific prediction outcomes. In this talk, Eric Wang will discuss the methods Uber used for explaining deep learning models and how we integrated these methods into the Uber AI Michelangelo ecosystem to support offline explaining.
AI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in Michelangelo
Alluxio, Inc.
Unleash Unlimited Potential with One-Time Purchase BoxLang is more than just a language; it's a community. By choosing a Visionary License, you're not just investing in your success, you're actively contributing to the ongoing development and support of BoxLang.
BoxLang: Review our Visionary Licenses of 2024
BoxLang: Review our Visionary Licenses of 2024
Ortus Solutions, Corp
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2
Into the Box Keynote Day 2: Unveiling amazing updates and announcements for modern CFML developers! Get ready for exciting releases and updates on Ortus tools and products. Stay tuned for cutting-edge innovations designed to boost your productivity.
Into the Box 2024 - Keynote Day 2 Slides.pdf
Into the Box 2024 - Keynote Day 2 Slides.pdf
Ortus Solutions, Corp
Recently uploaded
(20)
Advanced Flow Concepts Every Developer Should Know
Advanced Flow Concepts Every Developer Should Know
Developing Distributed High-performance Computing Capabilities of an Open Sci...
Developing Distributed High-performance Computing Capabilities of an Open Sci...
Corporate Management | Session 3 of 3 | Tendenci AMS
Corporate Management | Session 3 of 3 | Tendenci AMS
Studiovity film pre-production and screenwriting software
Studiovity film pre-production and screenwriting software
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Understanding Globus Data Transfers with NetSage
Understanding Globus Data Transfers with NetSage
Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pill...
Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pill...
Globus Compute wth IRI Workflows - GlobusWorld 2024
Globus Compute wth IRI Workflows - GlobusWorld 2024
GlobusWorld 2024 Opening Keynote session
GlobusWorld 2024 Opening Keynote session
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...
OpenFOAM solver for Helmholtz equation, helmholtzFoam / helmholtzBubbleFoam
OpenFOAM solver for Helmholtz equation, helmholtzFoam / helmholtzBubbleFoam
Accelerate Enterprise Software Engineering with Platformless
Accelerate Enterprise Software Engineering with Platformless
Vitthal Shirke Microservices Resume Montevideo
Vitthal Shirke Microservices Resume Montevideo
AI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in Michelangelo
BoxLang: Review our Visionary Licenses of 2024
BoxLang: Review our Visionary Licenses of 2024
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
Into the Box 2024 - Keynote Day 2 Slides.pdf
Into the Box 2024 - Keynote Day 2 Slides.pdf
12.2 secure configureconsole_adop_changes_aioug_appsdba_nov17
1.
2.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Oracle E-Business Suite R12.2: Secure Configuration Console and ADOP changes Shyam Sundar Rao (Senior Principal Developer, EBS Release Engineering) Chowdari Mathukumilli (Principal Developer, EBS Release Engineering) November 04, 2017
3.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Safe Harbor Statement The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.
4.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | 1 2 3 4 Secure Configure Console
5.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Agenda for Secure Configuration Console Secure Configuration Console overview Checks of Secure Configuration Console in 12.2 Additional new checks introduced in 12.2.7 Deep dive into few checks Command line utility Where to find more information Q/A 1 2 3 4 5 6 7
6.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console EBS Users cannot login to the system 1 2 3 4 New
7.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Automatic Assessment of your Environment by Sysadmin 1 2 3 4 New
8.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Automatic Assessment of your Environment by Sysadmin 1 2 3 4 Configure or Acknowledge and Accept Warnings: Your system will be locked down until the system administrator configures or acknowledges the recommended security configurations. New
9.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Automatic Assessment of Your Environment 1 2 3 4 •Review and implement secure configuration recommendations from a single dashboard. •Access via the “Functional Administrator” responsibility, “Configuration Manager” tab •Check your configuration •Automatically configure items that are out of compliance •Checks are assigned a severity level •Suppress checks that are not relevant to your system
10.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Manual/Autofixable and Failed/Passed Checks 1 2 3 Details: Manual and Autofixable checks Details: Failed Configuration
11.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Security Guideline Details for a Check 1 2 3 4
12.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console 1 2 3 4 1. Default application users passwords have been changed to non-default values. 2. Attachment upload profiles are available and set correctly. 3. Critical profile values are set correctly. 4. Default database users default passwords have been changed to non-default values. 5. Forms blocking of bad characters on the web server is active. 6. Site level security profiles are available in the system. 7. ModSecurity on the web server is active. 8. Serversecurity (Secure Flag in DBC file) is enabled. 9. Allowed Redirects feature is enabled 10. APPLSYSPUB privileges are properly restricted. 11. Auditing profiles are set. 12. Cookie Domain scoping is configured. 13. Application user passwords have been migrated to hashed passwords. 14. HTTPS is enabled Confidential. Oracle E-Business Suite Security Guide Release 12.2
13.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Checks introduced in 12.2.7 1 2 3 4 1. Clickjacking protection is configured. 2. Diagnostic web page protection is configured. 3. PUBLIC role privileges are restricted. 4. Oracle Workflow generated emails that reference URLs in EBS require additional user authentication. 5. Allowed Resources feature is enabled. 6. Required whitelist configuration for the allowed resources feature is correct and up-to-date. 7. Recommended Database initialization parameters have been set. 8. Database profiles have been created in the EBS database for password management. 9. iRecruitment file upload security profile value is set. 10. Oracle Workflow Admin access is restricted. 10 Additional Checks for a Total of 24 Checks Oracle E-Business Suite Security Guide Release 12.2
14.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Check: Attachment upload profiles are available and set correctly 1 2 3 4 • The Attachments feature are configured to restrict the file types that may be uploaded (actually, it restricts using a blacklist of the file extensions that Windows considers as executables such as .COM,.EXE and so on). • Profile Option Name: FND_SECURITY_FILETYPE_RESTRICT _DFLT • Recommended Value: N • Define maximum allowed size of an uploaded attachment • Profile Option Name: UPLOAD_FILE_SIZE_LIMIT • Recommended Value: As needed in (kb) • Enable Antisamy HTML Filter • This allows upload of a sanitized version of HTML documents such as resumes for iRecruitment. • Profile Option Name: FND_DISABLE_ANTISAMY_FILTER • Recommended Value: N Oracle E-Business Suite Security Guide Release 12.2
15.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Check: Default application users passwords have been changed to non-default values 1 2 3 4 • Oracle ships seeded user accounts with default passwords that are recommended to be changed. • Depending on product usage, some seeded accounts can or can not be disabled. • Disable an application user account by setting the END_DATE for the account. • Do not disable the GUEST user account. • If the GUEST password is changed, set the AutoConfig variable s_guest_pass to the new value in the context file before running AutoConfig. AutoConfig must be run to propagate the new password to config files. • The GUEST password must always be in UPPERCASE. • Script “fnddefpw.sql” can be executed as “apps” user to list the seeded accounts that still have the default password. Oracle E-Business Suite Security Guide Release 12.2
16.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Check: Default database users default passwords have been changed to non-default values 1 2 3 4 • The application database instance contains default, open schemas with default passwords. • These accounts and corresponding passwords are well-known, and they should be changed, especially for a database to be used in a production environment. • For Default database administration schemas we can make use of "alter user <SCHEMA> identified by <NEW_PASSWORD>;“ • For Schemas common to all Oracle E-Business Suite products and associated with specific Oracle E- Business Suite products we can make use of utility "FNDCPASS" Oracle E-Business Suite Security Guide Release 12.2
17.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Check: Application user passwords have been migrated to hashed passwords 1 2 3 4 • Traditionally, Oracle E-Business Suite has stored the password of the application users in encrypted form. • Starting with release 12.0.4, it is possible to switch the Oracle E-Business Suite system to store hashed versions of the passwords instead. • Hence its recommended as part of secure configuration console check to change the passwords. • Use AFPASSWD/FNDCPASS utility to hash the password. • IMPORTANT: This process is irreversible. Oracle E-Business Suite Security Guide Release 12.2
18.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Check: Database profiles have been created in the EBS database for password management 1 2 3 4 • Implement Two Profiles for Password Management • The database provides parameters to enforce password management policies. • However, some of the database password policy parameters could lock-out the Oracle E-Business Suite. • Because of this, we make specific recommendations for or against using certain management features depending upon schema type. • Create two database profiles: • One for middle tier application schemas (“managed schemas”) • One for all accounts used by individual database administrators to the second profile. Password Parameters Application Profile Administrator Profile FAILED_LOGIN_ATTEMPTS UNLIMITED 5 PASSWORD_LIFE_TIME UNLIMITED 90 PASSWORD_REUSE_TIME 180 180 PASSWORD_REUSE_MAX UNLIMITED UNLIMITED PASSWORD_LOCK_TIME UNLIMITED 7 PASSWORD_GRACE_TIME UNLIMITED 14 PASSWORD_VERIFY_FUNCTION Recommended Recommended Recommended Values Oracle E-Business Suite Security Guide Release 12.2
19.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Check: PUBLIC role privileges are restricted 1 2 3 4 Check whether the PUBLIC role privileges are restricted. • This checks whether unnecessary privileges to Oracle E-Business Suite object have been granted to the Oracle Database PUBLIC role. • Revoke unnecessary privileges from the PUBLIC role. Oracle E-Business Suite database objects should not have privileges granted to the PUBLIC role. • 'Create Index' should not be granted to PUBLIC Oracle E-Business Suite Security Guide Release 12.2
20.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Check: Allowed Resources feature is enabled 1 2 3 4 • Allowed JSPs introduced in E-Business Suite 12.2.4 • Enabled by default in E-Business Suite ATG 12.2.7 • Rebranded to Allowed Resources in 12.2.6 with the following patches: • ATG 12.2.6 (21900895:R12.ATG_PF.C.DELTA.6) • TKX Delta 9 (25180736:R12.TXK.C.DELTA.9) • ENABLE ALLOWED RESOURCES (24737426:R12.FND.C) - This patch will turn the Allowed Resources feature ON. Oracle E-Business Suite Security Guide Release 12.2
21.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Feature overview of Allowed Resources 1 2 3 4 • Defines whitelist of web allowed resources • A whitelist is an explicit list of items that are allowed for access • Enhancements to Allowed JSPs feature • Whitelist resources including servlets and JSPs • Prevents access to resources which are not used. • Allows custom resources to ne defined in the list of allowed resources. • Additional Features in 12.2.7 • Metadata now stored in the database (not in configuration files) • New user interface • With configuration metadata stored in the database, allowed resources configuration will be preserved when upgrading and patching • Whitelist configuration recommendations are provided based upon products used and underlying resource usage • Utilities to identify custom resources and populate usage data Oracle E-Business Suite Security Guide Release 12.2
22.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Configuration overview of Allowed Resources 1 2 3 4 • Applying Patch 24737426:R12.FND.C delivers new profile • "Security: Allowed Resources" (FND_SEC_ALLOWED_RESOURCES) • The default value is CONFIG (Configured). • This provides restricted access to the allowed resources as per the whitelisted resources listed in the configuration files. • The feature can be turned of by setting the profile option to “All” • New profile overrides profile: Allow Unrestricted JSP Access (FND_SEC_ALLOW_JSP_UNRESTRICED_ACCESS) • The profile is refreshed at the UPDATE_CHECK_INTERVAL rate. Its generally 60sec. Oracle E-Business Suite Security Guide Release 12.2
23.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Feature overview of Allowed Resources 1 2 3 4 3 Levels of Granularity for Configuring Access through the UI • If you are not using any products in a particular product family, ensure that the Enabled check box is not selected in the Details section of the Product Family Configuration page. • To restrict access at the product level, deny access to the appropriate product-level resources on the Product Details tab in the Product and Common Resources section. • To restrict access at the individual resource level, deny access to the resources in question by drilling down to the Resource Details or denying access in Common Resources tab. Oracle E-Business Suite Security Guide Release 12.2
24.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | UI is accessible via the Functional Administrator responsibility Functional Administrator page Allowed Resources tab Easily allow or deny access to products and underlying resources A family name may be selected from the left menu to view the Product Family Configuration User Interface for Allowed Resources
25.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Details section Enabled check box indicates whether or not the product family resources are used and allowed. Product and Common Resources Details Section Use this section of the page to configure products. User Interface for Allowed Resources 12.2.7
26.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | User Interface for Allowed Resources Product and Common Resource Details Product Details tab
27.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | User Interface for Allowed Resources Product and Common Resource Details Common Resources Tab 12.2.7
28.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | User Interface for Allowed Resources Product and Common Resource Details Product Details tab Click on Product Name 12.2.7
29.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | User Interface for Allowed Resources Product Details tab Click on Product Name Used Tab 12.2.7
30.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Evaluating Usage with Access Logs Step 1. Generate Web Usage File - generate a summary of resources used in your instance. • Download webusage.awk – My Oracle Support Knowledge Document 2069190.1, Security Configuration and Auditing Scripts for Oracle E- Business Suite, for the latest zip file containing the script – Generates a summary of resources used from any available Apache access logs. – This can then be leveraged using the WLDataMigration utility to identify custom resources as well as populate web usage data. – Execute the webusage.awk script againstyour Apache access logs: $ cat access_log | tr '?' ' ' | awk -f webusage.awk > webusage.out 12.2.7 Oracle E-Business Suite Security Guide Release 12.2
31.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Populate Web usage data Step 2. Populate Web Usage and Custom Configurations •Populate web usage data or custom configuration with WLDataMigration •The WLDataMigration utility provides the ability to identify and populate custom resources and web usage data from your Apache access logs. It also allows you to populate that information, or migrate existing customization configuration files, into the allowed resources repository. •Execute Loader utility to populate web usage data for already seeded resources and generate CUSTOM.out for unknown resources $ java oracle.apps.fnd.security.resource.WLDataMigration MODE=seed INPUT_FILE=webusage.out DBC=$FND_SECURE/<SID>.dbc This mode allows you to leverage your existing Apache access logs to identify custom resources as well as populate web usage data. It takes the webusage.out file as input which is generated via the webusage.awk script described in the previous section. This mode also produces a CUSTOM.out file of potential custom resources. Oracle E-Business Suite Security Guide Release 12.2
32.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Load Custom Configuration for Allowed Resources Step 3 – Review CUSTOM.out and Load • Option 1: Use the CUSTOM.out file generated from WLDataMigration Review the CUSTOM.out file before uploading to ensure that entries are legitimate $ java oracle.apps.fnd.security.resource.WLDataMigration MODE=custom INPUT_FILE=CUSTOM.out DBC=$FND_SECURE/<SID>.dbc • Option 2: Use the custom.conf file from prior configuration of Allowed JSPs or Allowed Resources feature. $ java oracle.apps.fnd.security.resource.WLDataMigration MODE=custom INPUT_FILE=CUSTOM.conf DBC=$FND_SECURE/<SID>.dbc Oracle E-Business Suite Security Guide Release 12.2
33.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Secure Configuration Console Command line utility 1 2 3 4 If a user with local system administrator privileges is not available, you can access the Secure Configuration Console by using the following command line utility: java oracle.apps.fnd.security.AdminSecurityCfg <APPS Username/APPS password[@<DB Host>] [-check|-fix|-status|-lock|-unlock] [DBC=<DBC File Path>] [CODES=<code1>,<code2>,<code3>...] This utility is provided for the following tasks: • To take the system out of locked down mode. • To compute the status of a certain configuration or all configurations. • To configure a certain configuration or all configurations of type 'Autofixable'. • To view the status of a certain configuration or all configurations. Oracle E-Business Suite Security Guide Release 12.2
34.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Where to find more information ? 1 2 3 4 EBS Documentation and Training – EBS 12.2 Information Center MOS Note 1581299.1 Includes link to the EBS Documentation Web Library FAQ: Oracle E-Business Suite Security (MOS Note 2063486.1) Oracle E-Business Suite Security Guide, Release 12.2 – Part# E22952 Security Configuration and Auditing Scripts for Oracle E-Business Suite (MOS Note 2069190.1)
35.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | 35 Program Agenda: ADOP and Rapid Install Changes Service Name Change for Patch Edition FS File System Synchronization Improved Log Directory Structure Rapid Install: Patching Stage Area References Q/A 1 2 3 4 5 6
36.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | 36 New and Changed Features in ADOP
37.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Service Name change for Patch Edition FS • The Oracle Grid Infrastructure is required by Oracle Automatic Storage Management (ASM), which can be used by Oracle Real Application Clusters. • The Grid Listener requires all registered service names to be unique. • AD-TXK Delta 9 introduces full support for the Oracle Grid Listener used by ASM. • AD-TXK Delta 8 and earlier, the service name for connections to the patch edition of the database was always 'ebs_patch'. • In AD-TXK Delta.9, the service name to connect to the patch edition has been changed to '<instance_name>_ebs_patch'. 37
38.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Mandatory Steps for Migrating Service Name change • Migrate changes from Application Tier to Database tier nodes (after AD-TXK Delta patching cycle). • On Run Edition File System – Execute the admkappsutil.pl utility to create the appsutil.zip file in <INST_TOP>/admin/out. • $ perl <AD_TOP>/bin/admkappsutil.pl • On Database tier nodes: – Source the environment for RDBMS ORACLE_HOME • Copy or FTP the appsutil.zip file to <RDBMS ORACLE_HOME> • Uncompress appsutil.zip, under <RDBMS ORACLE_HOME> – $ unzip -o appsutil.zip • Run Autoconfig on Database Tier nodes • Run Autoconfig on Run Edition File System Confidential – Oracle Internal 38
39.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Patch Service Rename: What to Know? • Starting AD-TXK Delta.9, the service name to connect to the patch edition has been changed to '<instance_name>_ebs_patch'. • Mandatory to Update database tier with the latest patches post AD-TXK Delta application. • Avoid bouncing of Database during adop cycle for applying AD-TXK Delta. • fs_clone to be run post AD-TXK Delta. If not, next prepare will automatically run fs_clone. 39
40.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | • New prepare phase parameter (sync_mode) to control synchronization behavior. • adop phase=prepare sync_mode=(delta|patch) [default: patch] – adop phase=prepare sync_mode=patch (default) – adop phase=prepare sync_mode=delta (new file based) • sync_mode=patch – Default behavior. – adop will synchronize the file systems by applying patches applied in the previous patching cycle to the patch file system. Confidential – Oracle Internal 40 File System Synchronization
41.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | • sync_mode=delta – As a faster alternative, you can specify the parameter/value pair sync_mode=delta to synchronize the file systems by running a user-specified third-party file synchronization (copy) utility. – Delta style synchronization uses the file system synchronization command specified in: $AD_TOP/patch/115/etc/delta_sync_drv.txt – Only files changed in the previous patching cycle are synchronized – The delta_sync_drv.txt file includes examples for setting up synchronization using rsync on UNIX or RoboCopy on Windows – Automatic support for customizations Confidential – Oracle Internal 41 File System Synchronization
42.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Improved Log Directory Structure • Improved structure of log directories – Log directories organized in a logical hierarchical structure • $ADOP_LOG_HOME/<session_id>/<execution_id>/<phase>/<node>/ – Consistent naming of top level log file • adop.log – Validation logs in a named directory 42 • $ADOP_LOG_HOME – 120 ‒20171020_152612 ‒prepare ‒rws1401232 • $ADOP_LOG_HOME – <session_id> ‒<execution_id> –<phase> ‒<node>
43.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | 43 Rapid Install: Patching Stage Area
44.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | Rapid Install: Patching Stage Area • Patch 25525148 (Rapid install consolidated one-off bundle on top of Startcd 51) • To patch the stage area created using startCD 12.2.0.51 (Patch#22066363) • Prerequisite: Create the stage area using startCD 12.2.0.51 and latest Oracle E-Business Suite Release 12.2 Media Pack. • Download and Unzip patch 25525148 • Execute patchRIStage.sh (patchRIStage.cmd in case of Windows); Provide Rapid Install stage area as input parameter. Confidential – Oracle Internal 44
45.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | • Oracle E-Business Suite Maintenance Guide Release 12.2 – (Part#E22954) • Applying the Latest AD and TXK Release Update Packs to Oracle E-Business Suite Release 12.2 (Doc ID 1617461.1) • Oracle E-Business Suite Applications DBA and Technology Stack Release Notes for R12.AD.C.Delta.10 and R12.TXK.C.Delta.10 (Doc ID 2295390.1) • Oracle E-Business Suite Setup Guide, Release 12.2 – (Part#E22953) • Oracle E-Business Suite Installation Using Rapid Install Guide – (Part#E22950) Confidential – Oracle Internal 45 Where to find more information ?
46.
Copyright © 2017,
Oracle and/or its affiliates. All rights reserved. | 1 2 3 4