Table of Contents Table of Contents Title and Copyright Information Preface Audience Documentation Accessibility 1 Overview Basic Security Considerations Overview of OSM Security Understanding the OSM Environment Recommended Deployment Topologies Operating System Security Operating System Releases and Patch Levels Restricting Permissions for OSM Directories Port Security Oracle Database Security Oracle Database Administrator Roles and Permissions Transparent Data Encryption Dependent Schemas WebLogic Server Security 2 Performing a Secure OSM Installation Pre-Installation Configuration About the O7_DICTIONARY_ACCESSIBILITY Parameter Installing OSM Securely Installation Type Password Policies Users and Groups Security-Relevant Installation Steps 3 Implementing OSM Security Secure Credential Management Secure Solution Data Storage Using the WebLogic Scripting Tool Secure Logging 4 Security Considerations for Developers Securely Communicating with External Systems Security Callback Hiding Sensitive Data in the Web Client Web Service Security A Secure Deployment Checklist