Getting Started
This security guide provides an overview of the Oracle Utilities Live Energy Connect (LEC) v8.0 security process and covers the following:
- Establishing machine-level roles and security policies limiting access to the system on which LEC is deployed
- Setting appropriate firewall rules to limit security vulnerabilities
- Specific protocol security measures
Audience
This guide is intended for system, network, and security administrators tasked with installing, configuring, and maintaining Oracle Utilities Live Energy Connect v8.0.
It covers the following topics:
- Installing system prerequisites and the Oracle Utilities Live Energy Connect v8.0 software
- Setting appropriate firewall rules to limit security vulnerabilities
- Specific protocol security measures
Prerequisites
Oracle Linux 8 (OL8) must be installed on the target host prior to installing Oracle Utilities Live Energy Connect v8.0. An additional dependency, the Oracle Cloud Native Environment (OCNE) framework, will be downloaded and installed to the host system when Oracle Utilities Live Energy Connect v8.0 self-extracting archive runs.
It is strongly recommended that the OL8 operating system be installed with a security profile such as NIST 800-171 and that OpenSCAP be used periodically to confirm security compliance for the host system. See details on using OpenSCAP with OL8.
Oracle Utilities Live Energy Connect v8.0 will typically be deployed to on-premise systems that are air-gapped, with no direct public network access. Procedures should be in place to push critical updates and patches of OL8 and OCNE to production systems in a timely fashion. For an example, see Using a Private Registry .