Oracle Database 2 Day + Security Guide teaches you how to perform day-to-day database security tasks.

Topics:

• Before Using This Guide
  Before using this guide, you should understand the basics of administering an Oracle database.
• What This Guide Is and Is Not
  The objective of Oracle Database 2 Day + Security Guide is to use a task-oriented approach to describe how to perform default security tasks.

Database administrators for Oracle Database are responsible for common security-related tasks.

These tasks are as follows:

• Ensuring that the database installation and configuration is secure

• Managing the security aspects of user accounts: developing secure password policies, creating and assigning roles, restricting data access to only the appropriate users, and so on

• Ensuring that network connections are secure

• Encrypting sensitive data

• Ensuring the database has no security vulnerabilities and is protected against intruders

• Deciding what database components to audit and how granular you want this auditing to be

• Downloading and installing security patches

In a small to midsize database environment, you might perform these tasks as well and all database administrator-related tasks, such as installing Oracle software, creating databases, monitoring performance, and so on. In large, enterprise environments, the job is often divided among several database administrators—each with their own specialty—such as database security or database tuning.

To achieve the goals of securing your Oracle database, you must use a specific set of products, tools, and utilities.

These tools are as follows:

• Oracle Database 12c Enterprise Edition

  Oracle Database 12c Enterprise Edition provides enterprise-class performance, scalability, and reliability on clustered and single-server configurations. It includes many security features that are used in this guide.

• Oracle Enterprise Manager

  Oracle Enterprise Manager is a Web application that you can use to perform database administrative tasks for a single database instance or a clustered database. It enables you to manage multiple Oracle databases from one location. This guide explains how to use Enterprise Manager to perform database administrative tasks.

• SQL*Plus

  SQL*Plus is a development environment that you can use to create and run SQL and PL/SQL code. It is part of the Oracle Database 12c release 1 (12.1) installation.

• Database Configuration Assistant (DBCA)

  Database Configuration Assistant enables you to perform general database tasks, such as creating, configuring, or deleting databases. In this guide, you use DBCA to enable default auditing.

• Oracle Net Manager

  Oracle Net Manager enables you to perform network-related tasks for Oracle Database. In this guide, you use Oracle Net Manager to configure network encryption.

To learn the fundamentals of securing an Oracle database, you should follow a roadmap of specific tasks.