OCP 12c Using the New Security Features

Ensuring your organization meets security, privacy, and compliance requirements is a must in today's world. This course will teach you all about the new security features within Oracle 12c and how to take full advantage of them.
Course info
Level
Advanced
Updated
Dec 9, 2016
Duration
2h 22m
Table of contents
Course Overview
Auditing - Enable and Configure the Unified Audit Trail
Auditing – Modes and the Multitenant Architecture
Auditing - Configure and Enable Audit Policies
Capturing of Extended and "Other" Sources Audit Information
Privileges - New Administrators and Their Purpose
Privileges – How to Use the Privilege Analysis Feature
Oracle Data Redaction Policies Usage and Management
Wrapping up New Security Features
Description
Course info
Level
Advanced
Updated
Dec 9, 2016
Duration
2h 22m
Description

As security breaches occur more and more frequently, protecting and limiting the use of personal and other sensitive information is absolutely imperative. How do you do that without disrupting your users or workers? In this course, OCP 12c Using the New Security Features, you will learn how the new security features of Oracle 12c, provide extra layers of protection and monitoring for your databases. First, you will learn about auditing abilities with the Unified Audit Trail and audit policies. Next, you will dive into privilege analysis and data redaction policies. Finally, you will learn about new administrative features that support separation of users duties and limiting access according to the least privileges needed for best practices. When you are finished with this course, you will have a firm grasp of all the new security features and how to use them accordingly to protect the most sensitive of information.

About the author
About the author

As a teenager, Tim found a love for teaching, learning, writing, and computers. He believes that everyone should be a lifelong learner. Tim has been teaching for nearly 21 years, either full or part-time. Tim is an Oracle Database Administrator with over 17 years of experience. He works out of Pittsburgh PA and lives in West Virginia with his wife and kids.

More from the author
Effective Reporting with Power BI
Intermediate
2h 16m
Feb 12, 2019
Oracle 12.2 Upgrade
Intermediate
2h 9m
May 16, 2018
OCP 12c Enhancements for the DBA
Advanced
2h 15m
Dec 27, 2017
More courses by Tim Boles
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone, my name is Tim Boles, and welcome to my course OCP 12c Using the New Security Features. I'm a manager of database services at Hitachi Consulting. I've been working for over 17 years with Oracle Database Technologies, and I often speak at the collaborate convention on different Oracle topics. It's not very often you can implement changes in a database that make it more secure, yet makes the administration easier. In this course, we're going to show you how to use the new security features of Oracle 12c to make your database more secure and at the same time make management and monitoring of the security much easier. Some of the major topics we're going to cover include implementation of the unified audit trail and audit policies, hiding data through redaction, new administrators for management of backups, data guard, and transparent data encryption, and finding the right privileges for users through privilege analysis. By the end of this course, you'll know the benefits and some of the limitations of the new security features of Oracle 12c. You'll understand how to move data redaction from the application level to the database. You will realize that the separation of duties and the principle of least privileges can be achieved through the use of the new administrative accounts in the privilege analysis feature. Before beginning this course, you should be familiar with the auditing features of Oracle database in the pre-12c versions. From here, you'll feel comfortable diving into other OCP 12c courses from Pluralsight, like OCP Upgrade Oracle Database 12c Management, OCP 12c Performing Backup and Recovery Using the New Features of RMAN. I hope you'll join me in this journey to learn the new security features of Oracle with the OCP 12c Using New Security Features course at Pluralsight.

Auditing - Enable and Configure the Unified Audit Trail
Welcome to the OCP 12c Using the New Security Features Pluralsight course. This course is part of a series that focuses on understanding the new Oracle 12c features while studying for the Oracle Certified Professional upgrade exam to Oracle 12c. This course should help anyone wanting to know more about the 12c new security features, but we do assume that you know the basics of how to use the security features from previous versions. This course continues the story of Mark, a senior Oracle database administrator at Globomantics. He's reviewing the Oracle 12c database new features and how they may be integrated into the Globomantics environment. Out of the hundreds of databases that Globomantics has in place, quite a few of them have government regulatory requirements such as those defined in the Sarbanes-Oxley Act. Mark is hoping that the new security features of Oracle 12c will help simplify the management and reporting of user access to data. In this session, we're going to introduce the new unified audit trail and give an overview of the architecture behind this new security feature. We'll also briefly cover the new auditing roles that are a part of this new paradigm in auditing and how to review the audit records that are stored in the unified audit trail.

Auditing – Modes and the Multitenant Architecture
This session will review Mark's findings on the different auditing modes and how unified auditing works in the multitenant architecture. Mark now has a general idea about the unified auditing architecture and is getting some of the new verbiage down. His team needs to decide if they're going to use mixed mode auditing or just jump in and implement pure mode. As Globomantics prepares to upgrade their databases to Oracle 12c, the team needs to understand the specific differences between mixed mode and pure mode, they need to understand how unified auditing works in the multitenant architecture, and they want to know why you'd pick mixed mode over pure mode.

Capturing of Extended and "Other" Sources Audit Information
This session features Mark's review of how the unified audit trail can capture extended data, as well as audit information from sources such as Data Pump. In 11g, the capturing of extra audit information was limited in your standard auditing, and any customization was generally done through things like triggers or fine grained auditing. In this session, we're going to see how auditing in 12c captures the extended audit information and how you can audit different Oracle components.

Privileges - New Administrators and Their Purpose
This session continues Mark's review of the new 12c security features. He's particularly focusing on the new administrators and their purpose. In the Pluralsight course OCP 12c Performing Backup and Recovery Using New Features of RMAN, Mark learned about the new SYS backup administrative user, and really like that its privileges were focused on the database backup and recovery. He really wants to learn more about the other new administrators that Oracle has added to the database. In many large organizations, there are dedicated DBAs performing specific database roles. This includes things such as database configuration management, tuning, security, storage, backup, and recovery. Following best security practice, there should be more of a focus on limiting the privileges of these DBAs to the specific tasks they perform. Oracle has attempted to follow the segregation of duties concept by creating new administrative users for specific tasks. Mark wants to compare what he knows from previous Oracle versions to the new 12c administrators and take a look at their privileges, the way they connect, and how their privileges compare with each other.

Privileges – How to Use the Privilege Analysis Feature
This continues our look into Mark, a senior DBA with Globomantics, and his review of the new 12c Oracle features. He now is really interested in learning how to use the privilege analysis feature. Critical to secure database is the principal of least privilege. It's often hard to identify unused privileges and remove them from users. This module will introduce the privilege analysis feature of Oracle 12c. We will show how to create privilege analysis policies based on privileges, roles, and conditions. And finally, we will show how to actually use the privilege analysis to produce usage reports and find the unnecessary and excessive privileges being used.