1 Installing Oracle Audit Vault and Database Firewall

Learn how to install Oracle Audit Vault and Database Firewall (Oracle AVDF).

See Also:

1.1 About the Software Installation Procedure

The Oracle Audit Vault and Database Firewall software is installed using the .iso files.

The Oracle Audit Vault and Database Firewall software comprises of the following:

  • Audit Vault Server installer file that is split into 3 parts or files as follows:

    • V1004238-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Audit Vault Server - Part 1 of 3 (MUST DOWNLOAD ALL THE 3 PARTS AND CONCATENATE BEFORE ATTEMPTING INSTALLATION)

    • V1004239-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Audit Vault Server - Part 2 of 3 (MUST DOWNLOAD ALL THE 3 PARTS AND CONCATENATE BEFORE ATTEMPTING INSTALLATION)

    • V1004240-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Audit Vault Server - Part 3 of 3 (MUST DOWNLOAD ALL THE 3 PARTS AND CONCATENATE BEFORE ATTEMPTING INSTALLATION)

    Note: Combine the three ISO files into the final ISO file (avdf-install.iso) that should be used to install Audit Vault Server. The instructions are available in the next topic.

  • V1004230-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Database Firewall

  • V1004235-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Deprecated-Cipher-Removal Utility

    Note: Apply the deprecated cipher removal patch on Audit Vault Server 20.2 after installation or upgrade. In case of upgrade, before applying the patch, make sure all Audit Vault Agents and Host Monitor Agents are upgraded to 20.2.

  • V1004236-01.zip Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Utilities. This bundle contains the following files:

    • Npcap installer required for Host Monitoring on Windows: npcap-utility.zip
    • Database Firewall utilities to examine Native Network Encryption traffic for Oracle Database and to gather session information from other database types: dbfw-utility.zip
    • Utilities_README: Instructions for deploying Npcap and Database Firewall utilities patch.
  • V1004237-01.zip Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Release Notes

Note:

The installation process wipes out existing operating system on the machine on which you install the Audit Vault Server or Database Firewall, and automatically installs the new operating system that comes along.

1.2 Downloading and Verifying the Software

Learn about downloading and verifying the software to install Oracle Audit Vault and Database Firewall.

For a fresh installation, you can download the Oracle Audit Vault and Database Firewall software from the Software Delivery Cloud. You cannot use this package to upgrade. To perform an upgrade from an existing deployment, you can download the upgrade software from the My Oracle Support website.

To download the install software:

  1. Use a web browser to access the Oracle Software Delivery Cloud portal:
  2. Click Sign In, and if prompted, enter your User ID and Password.
  3. In the All Categories menu, select Release. In the next field, enter Oracle Audit Vault and Database Firewall, and then click Search.
  4. From the list that is displayed, select the Oracle Audit Vault and Database Firewall version you want to install. Click the Select button against the specific release.

    The download is added to your cart. To check the cart contents, click View Items or Continue in the upper right of the screen.

  5. In the next page, verify the details of the installation package, and then click Continue.
  6. Read the Oracle Standard Terms and Restrictions displayed on the page. Select I reviewed and accept the Oracle License Agreement check box, and click Continue.

    The download page appears and displays the list of ISO files for Oracle Audit Vault and Database Firewall. The following is an example only (for release 20.2):

    • V1004238-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Audit Vault Server - Part 1 of 3 (MUST DOWNLOAD ALL THE 3 PARTS AND CONCATENATE BEFORE ATTEMPTING INSTALLATION)

    • V1004239-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Audit Vault Server - Part 2 of 3 (MUST DOWNLOAD ALL THE 3 PARTS AND CONCATENATE BEFORE ATTEMPTING INSTALLATION)

    • V1004240-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Audit Vault Server - Part 3 of 3 (MUST DOWNLOAD ALL THE 3 PARTS AND CONCATENATE BEFORE ATTEMPTING INSTALLATION)

      Note:

      Concatenate V1004238-01, V1004239-01, and V1004240-01 to get Audit Vault Server 20.2 ISO (avdf-install.iso) and then proceed with installation.
    • V1004230-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Database Firewall

    • V1004235-01 Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Deprecated-Cipher-Removal Utility

      Note: Apply the deprecated cipher removal patch on Audit Vault Server 20.2 after installation or upgrade. In case of upgrade, before applying the patch, make sure all Audit Vault Agents and Host Monitor Agents are upgraded to 20.2.

    • V1004236-01.zip Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Utilities. This bundle contains the following files:

      • Npcap installer required for Host Monitoring on Windows: npcap-utility.zip
      • Database Firewall utilities to examine Native Network Encryption traffic for Oracle Database and to gather session information from other database types: dbfw-utility.zip
      • Utilities_README: Instructions for deploying Npcap and Database Firewall utilities patch.
    • V1004237-01.zip Oracle Audit Vault and Database Firewall 20.2.0.0.0 - Release Notes

  7. Next to the Print button, click View Digest Details.

    The listing for the ISO files expands to display the SHA-1 and SHA-256 checksum reference numbers for each ISO file.

  8. Click Download. The Download Manager Installation screen is displayed. The size of the combined ISO files exceeds 11 GB, and takes time to download, depending on the network speed. The estimated download time and speed are displayed in the File Download dialog box.
  9. Click Download the installer, and then click Save File.
  10. Choose a location to save the ISO files. Click Save.

    Alternately, you can save each file individually by clicking its name and then specifying a location for the download.

  11. Combine the three AVS ISO files into one ISO file.
    • Linux:

      # cat <part1 file name>.iso <part2 file name>.iso <part3 file name>.iso > avdf-install.iso
    • Microsoft Windows:

      copy /b <part1 file name>.iso+<part2 file name>.iso+<part3 file name>.iso avdf-install.iso
  12. After the ISO files are downloaded to the specified location, verify the SHA-256 checksums of the downloaded files:
    1. After the download, generate a SHA256 checksum for the first Vpart_number.iso. For example, on a Linux machine run the following command to generate the checksum:
      $ sha256sum Vpart_number.iso

      Ensure that the checksum matches the value that you copied from the File Download dialog box in the earlier step.

    2. Generate a SHA-256 checksum for the second Vpart_number.iso:
      $ sha256sum Vpart_number.iso

      Ensure that the checksum matches the value that you copied from the File Download dialog box in the earlier step.

  13. Copy the SHA-256 checksum reference numbers and store them for later reference.

    For combined AVS installable ISO (avdf-install.iso):

    3b3d51ca8569a5a01caae9fbc91b5385b9c2c244ed91e277789bf4125ed2db84

    For Database Firewall ISO (V1004230-01.iso):

    5431ce1f29519c533ff88b23f38b19d7dab23f723d30c68097452ac7a3bd98e9

    Note:

    Verify the checksum value for both the Audit Vault Server and Database Firewall ISO files. In case of any error, download the ISO files again.
  14. Optionally, the combined Audit Vault Server iso image or the DBFW iso image can be copied to another media, like USB. If the files are copied to a Linux based USB medium, then execute these steps:
    1. Execute the following command to open the Linux terminal:
      sudo su -
    2. Execute the following command to discover the USB device:
      lsblk
    3. Execute the following command to erase the data on the USB device:
      dd if=/dev/zero of=/dev/<USB device> status=progress conv=fdatasync
    4. Execute the following command to copy the iso file directly to the USB device:
      dd if=avdf-install.iso of=/dev/<USB device> status=progress conv=fdatasync
    5. Boot the system using the USB device. Ensure the appliance is configured to boot from the USB device.
  15. If the files are copied to a Windows (EFI only - Extensible Firmware Interface) based USB medium, then execute these steps:
    1. Execute the following command to open the Windows command prompt and to load the diskpart:
      diskpart
    2. Execute the following command to discover the USB device:
      list disk
    3. Execute the following command to select the USB device:
      select disk 1
    4. Execute the following commands to erase or format the data on the USB device:
      clean
      create partition primary
      format fs=fat32 label=AVS_20_1_0_0_0

      OR

      format fs=fat32 label=DBFW_20_1_0_0_0
    5. Execute the following command to add Master Boot Record (MBR) to the USB device:
      active
    6. Execute the following command to exit the diskpart:
      exit

1.3 Installing Audit Vault Server or Database Firewall

Steps for installing Audit Vault Server or Database Firewall.

Audit Vault Server and Database Firewall are delivered as software appliance images, ready to be deployed on physical machines or on virtual machines (VM). Start with the installation of Audit Vault Server and later install Database Firewall.

Note:

  • You must combine the downloaded Audit Vault Server ISO files into a single ISO file, before starting the Audit Vault Server installation.
  • If you are installing Audit Vault Server on VMware, then set the VMX configuration parameter disk.EnableUUID to TRUE. Without this setting, the Audit Vault Server installation on VMware will fail.
  1. Choose the .iso file depending on whether you are installing on a Virtual Machine or a physical machine. Boot the machine using the bootable USB disk created in the previous section. Ensure the machine is configured to boot from the USB device and then complete the installation.
  2. The system boots and the initial splash screen appears as follows. This indicates the release number you are installing.
  3. Press the Enter key. The installation proceeds.
  4. Enter the new root password when prompted for change.
  5. Enter the same password when prompted for confirmation.

    The system installs the operating system and then reboots.

  6. Continue with the installation and sign in as root user on the console when prompted.
  7. The installation continues with the following prompts on the screen one after another:
    Installing AVDF bootstrap
    Beginning installation of Audit Vault Server dependencies
    Creating repository.
    Relinking Oracle Database
    Installing AVS application.
    OR
    Installing Database Firewall.
    Migrating repository to ASM storage
    Updating Oracle Audit Vault and Database Firewall data
    Updating UI
    
    ....
  8. The installer prompts for network configuration. Select the appropriate network interfaces and click OK.
  9. The following Network settings screen appears.
  10. Enter the following fields:
    1. IP Address of the network interface
    2. Network Mask
    3. Gateway: Enter the IP address of the network interface if a gateway is required. Else, clear the field before saving.
  11. Press OK.
  12. Upon completion of the network settings, the installation continues.
  13. Upon successful installation of Audit Vault Server, the following message is displayed:
    Audit Vault Server 20.1.0.0.0 installation has completed.
    Post install configuration steps must be completed using the
    appliance administration console ...
  14. Press OK. The installation of Audit Vault Server is complete.
  15. Upon successful installation of Database Firewall, the following message is displayed:
    Oracle Database Firewall 20.1.0.0.0 installation has completed.
  16. The installer screen exits and automatically returns to the login prompt.

Note:

The Audit Vault Server and the Database Firewall server are software appliances. You must not make any changes to the Linux operating system through the command line on these servers unless following official Oracle AVDF documentation or under guidance from Oracle Support.

See Also: