Changes in This Release for Oracle Key Vault
This Oracle Key Vault release introduces new features that enhance the use of Oracle Key Vault in a large enterprise. Oracle Key Vault release 18.8 introduces the following new features.
Note:
This is the terminal release of Oracle Key Vault release 18.- Changes for Oracle Key Vault Release 21.3
Oracle Key Vault release 21.3 introduces new features that affect this guide. - Changes for Oracle Key Vault Release 21.2
Oracle Key Vault release 21.2 introduces new features that are related to installation and upgrade operations.
Changes for Oracle Key Vault Release 21.3
Oracle Key Vault release 21.3 introduces new features that affect this guide.
- Enhancements for the Oracle Audit Vault Integration with Oracle Key Vault
Starting in Oracle Key Vault release 21.3, the integration of the Oracle Audit Vault component of Oracle Audit Vault with Oracle Key Vault has been made more secure and easier to accomplish. - Alert for Fast Recovery Area Space Utilization
Starting in Oracle Key Vault release 21.3, an alert will be generated when the Fast Recovery Area Space utilization of the Oracle Key Vault's embedded database exceeds the configured threshold value. - Cluster Redo Shipping Status Alert Message Change
Starting in Oracle Key Vault release 21.3, theCluster Redo Shipping Status
alert notification message has changed.
Parent topic: Changes in This Release for Oracle Key Vault
Enhancements for the Oracle Audit Vault Integration with Oracle Key Vault
Starting in Oracle Key Vault release 21.3, the integration of the Oracle Audit Vault component of Oracle Audit Vault with Oracle Key Vault has been made more secure and easier to accomplish.
This enhancement includes the following changes in functionality:
- Change in System Administrator and Audit Manager roles: Users who have the System Administrator role no longer can perform the Oracle Audit Vault integration. Instead, for better separation of duty, only a user who has been granted the Audit Manager role can perform the integration. In previous releases, only users with the System Administrator role could perform the integration. However, users who have the System Administrator role can check if the Audit Vault monitoring process is active.
- Easier integration process: A user with the Audit Manager role now can use the Oracle Key Vault management console to perform all the Oracle Audit Vault integration steps. In previous releases, an Oracle Key Vault administrator had to manually perform steps such as downloading and installing the Audit Vault agent to perform this integration.
Related Topics
Parent topic: Changes for Oracle Key Vault Release 21.3
Alert for Fast Recovery Area Space Utilization
Starting in Oracle Key Vault release 21.3, an alert will be generated when the Fast Recovery Area Space utilization of the Oracle Key Vault's embedded database exceeds the configured threshold value.
By default, the configured threshold value is 70 and the alert is available for standalone, multi-master cluster, and primary-standby environments. The new alert enables you to better monitor the Fast Recovery Area space usage of the Oracle Key Vault's embedded database.
Related Topics
Parent topic: Changes for Oracle Key Vault Release 21.3
Cluster Redo Shipping Status Alert Message Change
Starting in Oracle Key Vault release 21.3, the Cluster Redo Shipping Status
alert notification message has changed.
In previous releases, users were alerted only when the redo-shipping status was active (up) or inactive (down). The message now, in addition to this information, indicates whether the node in the cluster is operating in read-only mode or is no longer in read-only mode.
Related Topics
Parent topic: Changes for Oracle Key Vault Release 21.3
Changes for Oracle Key Vault Release 21.2
Oracle Key Vault release 21.2 introduces new features that are related to installation and upgrade operations.
- Certificate and Secret Objects Expiration Alerts
In Oracle Key Vault release 21.2, you can configure alert notifications for the expiration of certificate and secret objects. - New and Changed RESTful Services Utility Commands
In Oracle Key Vault release 21.2, several new and changedokv managed-object
RESTful services utility commands are available. - Changes in the Oracle Key Vault Management Console
In Oracle Key Vault release 21.2, the Oracle Key Vault management console user interface has had minor changes throughout.
Parent topic: Changes in This Release for Oracle Key Vault
Certificate and Secret Objects Expiration Alerts
In Oracle Key Vault release 21.2, you can configure alert notifications for the expiration of certificate and secret objects.
In previous releases, expiration alerts for all managed objects shared a common configuration under the Key Rotations
alert. Starting with this release, you can separately configure the expiration alerts for certificate and secret objects. The expiration alerts for the certificate and secret objects are no longer reported as Key Rotations
alerts. Similar to alerts such as those for cluster components or user password expiration, you can set this type of alert to notify users when the deactivation date for a certificate or secret object is within its threshold value.
The new alerts for certificate and secret objects are as follows:
Certificate Object Expiration
Secret Object Expiration
The object expiration alerts are now raised only when the object is in the PRE-ACTIVE
or ACTIVE
state. Previously, they were raised regardless of the object state.
The object expiration alerts are now deleted when an object is revoked or destroyed. Previously, they were deleted when object was destroyed.
Parent topic: Changes for Oracle Key Vault Release 21.2
New and Changed RESTful Services Utility Commands
In Oracle Key Vault release 21.2, several new and changed okv managed-object
RESTful services utility commands are available.
The new okv managed-object
RESTful services commands, which add support for get
and register
operations for certificate requests, private keys, and public keys, are as follows:
okv managed-object certificate-request get
okv managed-object certificate-request register
okv managed-object private-key get
okv managed-object private-key register
okv managed-object public-key get
okv managed-object public-key register
The changed okv managed-object
RESTful services commands are as follows:
okv managed-object certificate register
okv managed-object object locate
Related Topics
Parent topic: Changes for Oracle Key Vault Release 21.2
Changes in the Oracle Key Vault Management Console
In Oracle Key Vault release 21.2, the Oracle Key Vault management console user interface has had minor changes throughout.
These changes are the result of modified terms, updates to the current release, and enhancements for better usability. The overall interface has not had major changes.
Parent topic: Changes for Oracle Key Vault Release 21.2