Release Notes
Release 12.1.2
E27781-12
July 2017
These Release Notes contain important information about Oracle Audit Vault and Database Firewall Release 12.1.2.
This document contains these topics:
You can download the most current version of this document, and the full set of Oracle Audit Vault and Database Firewall documentation, from the following website:
http://www.oracle.com/pls/topic/lookup?ctx=avdf121
You can find documentation for other Oracle products at the following website:
You can upgrade to Oracle AVDF version 12.1.2.1.0 (Bundle Patch 1) from all Oracle AVDF versions up to, and including 12.1.1.4.0, and from version 12.1.2.0.0. However, you can not upgrade from a subsequent 12.1.1 bundle patch, for example 12.1.1.5.0, if it was released after version 12.1.2.1.0 (Bundle Patch 1). To upgrade from such a bundle patch, please contact Oracle Support to obtain the most recent bundle patch for AVDF 12.1.2.
You can find the latest information on supported secured targets and platforms in Oracle Audit Vault and Database Firewall Administrator's Guide, and in Article 1536380.1 at the following website:
The following are new features in this release:
You can configure the Audit Vault Server to use an external iSCSI SAN server to store the audit event repository and system data.
The Audit Vault Agent is updated automatically when the Audit Vault Server is upgraded or a patch is applied.
You can store archive data in a Network File Share (NFS) location.
Entitlement reports include data specific to Oracle Database 12c.
Database Vault is automatically enabled and configured in the Oracle Database embedded in the Audit Vault Server. This further strengthens security by restricting privileged access to the Oracle Database for all users including those with administrative access.
Password hashing has been upgraded to a more secure standard. Change your passwords after upgrade to take advantage of the more secure hash.
The Audit Vault Agent deployment procedure has been simplified. Registering a host in the Audit Vault Server automatically generates an Agent activation key, and therefore, the step requesting Agent activation is no longer required.
Adding and updating a secured target location has been simplified in the Audit Vault Server administrator console UI.
You can set alerts to be forwarded to syslog.
You can download diagnostics log files from the Audit Vault Server UI.
The Audit Vault Agent is supported on 32-bit Linux and Windows platforms.
Oracle Database 9i is supported for Database Firewall.
MySQL 5.6 is supported on the Database Firewall.
Table 1 lists the system's current known issues, with workarounds if available. Be sure to apply the latest Bundle Patch. New installations include the latest Bundle Patch.
In general, if you experience a problem using the Audit Vault Server console UI, try running the same command using the AVCLI command line utility. See Oracle Audit Vault and Database Firewall Administrator's Guide for a command line reference.
Table 1 Audit Vault and Database Firewall Known Issues
Bug Number | Description |
---|---|
18850821 |
Syslog (audit trail) collector does not work for systems with rsyslog This affects Oracle secured targets running on computers on Oracle Linux 6 (OEL6) platforms. Workaround:
|
18948614 |
HA: After failover Audit Vault Server fails to forward syslog and arcsight messages Workaround:
|
18636139 |
Provide option to remove HA configuration from UI. Workaround: This workaround is available starting with AVDF 12.1.1.4 (12.1.1 BP4). To unpair two paired Audit Vault Servers:
|
18363490 |
Need to install Visual C++ 2010 Package to run Windows Agent. Workaround: Install Microsoft Visual C++ 2010 Redistributable Package to run the Audit Vault Agent on a Windows host. If you are using Microsoft Windows 2003, then you must also install Windows 2003,Microsoft Visual C++ 2005 Redistributable Package. |
18381322 |
Invalid DB Firewall network configurations should be resolved before upgrade. This is relevant for users with Database Firewall and, in particular, Host Monitor Deployed. Before upgrading to 12.1.2 you should ensure that your Database Firewall configuration is valid. Workaround: Ensure that any enabled traffic sources on the Database Firewall have two ports in the traffic source. Also ensure that any enforcement point in DPE mode is using an enabled traffic source. |
18420068 |
Update This issue affects Oracle Database 12c secured targets that have Database Vault enabled. When using the Oracle AVDF user setup script oracle_user_setup.sql, and running the script with Connect to the secured target database as DV Owner and execute: exec dbms_macadm.add_auth_to_realm('Oracle Data Dictionary', 'C##USER1', null,dbms_macutl.g_realm_auth_participant); Workaround: Ignore the above message if you see it when running the script for an Oracle Database 12c. Instead, execute the following on the database as
SQL> GRANT DV_STREAMS_ADMIN TO username;
For For full instructions on this setup script, see Oracle Audit Vault and Database Firewall Administrator's Guide. |
18391942 |
Online help lists four disk groups in the Audit Vault Server repository. The online help for the Repository page in the Settings tab incorrectly indicates there is an ARCHIVE disk group. There are only three disk groups available in Oracle AVDF 12.1.2:
|
17862296 |
Host monitor might choose incorrect network device if multiple preferred devices exist. This can occur when the default network adapter that the host monitor uses (of type Intel(R) PRO/1000 MT Network Adapter) is for the wrong network. Workaround: Change the network adapter the host monitor uses so that traffic is captured from the correct network for the secured target. Follow these steps:
|
16868457 |
Agent upgrade fails if 12.1.0 Agent has deployed plug-ins. Workaround: Re-deploy the plug-ins, and then download and install the Agent again. |
15963372 |
Agent install fails when Workaround: Use a different browser (such as Firefox) to download the |
For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at http://www.oracle.com/pls/topic/lookup?ctx=acc&id=docacc
.
Oracle customers that have purchased support have access to electronic support through My Oracle Support. For information, visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=info
or visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=trs
if you are hearing impaired.
Oracle Audit Vault Release Notes, Release 12.1.2
E27781-12
Copyright © 2012, 2017, Oracle and/or its affiliates. All rights reserved.
This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited.
The information contained herein is subject to change without notice and is not warranted to be error-free. If you find any errors, please report them to us in writing.
If this is software or related documentation that is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, then the following notice is applicable:
U.S. GOVERNMENT END USERS: Oracle programs, including any operating system, integrated software, any programs installed on the hardware, and/or documentation, delivered to U.S. Government end users are "commercial computer software" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, use, duplication, disclosure, modification, and adaptation of the programs, including any operating system, integrated software, any programs installed on the hardware, and/or documentation, shall be subject to license terms and license restrictions applicable to the programs. No other rights are granted to the U.S. Government.
This software or hardware is developed for general use in a variety of information management applications. It is not developed or intended for use in any inherently dangerous applications, including applications that may create a risk of personal injury. If you use this software or hardware in dangerous applications, then you shall be responsible to take all appropriate fail-safe, backup, redundancy, and other measures to ensure its safe use. Oracle Corporation and its affiliates disclaim any liability for any damages caused by use of this software or hardware in dangerous applications.
Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners.
Intel and Intel Xeon are trademarks or registered trademarks of Intel Corporation. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. AMD, Opteron, the AMD logo, and the AMD Opteron logo are trademarks or registered trademarks of Advanced Micro Devices. UNIX is a registered trademark of The Open Group.
This software or hardware and documentation may provide access to or information about content, products, and services from third parties. Oracle Corporation and its affiliates are not responsible for and expressly disclaim all warranties of any kind with respect to third-party content, products, and services unless otherwise set forth in an applicable agreement between you and Oracle. Oracle Corporation and its affiliates will not be responsible for any loss, costs, or damages incurred due to your access to or use of third-party content, products, or services, except as set forth in an applicable agreement between you and Oracle.