1. Installation Guide
  2. Downloading and Installing Oracle Audit Vault and Database Firewall

3 Downloading and Installing Oracle Audit Vault and Database Firewall

Learn how to download and install Oracle Audit Vault and Database Firewall (Oracle AVDF).

See Also:

3.1 About Oracle Audit Vault and Database Firewall Installation

Understand the process for installing Oracle Audit Vault and Database Firewall (Oracle AVDF).

Here are the steps for installing Oracle AVDF:

  1. Understand the Oracle Audit Vault and Database Firewall components to be installed.
  2. Plan the system configuration that best suits your needs.
  3. Ensure that your system meets the pre-install requirements.
  4. Complete the installation of Audit Vault Server.
  5. Complete the installation of Database Firewall.
  6. Complete the post-install configuration tasks.
  7. Complete the registration of hosts and deployment of Agent.
  8. Complete the registration of targets for audit collection and Database Firewall monitoring.

Note:

The Audit Vault Server and the Database Firewall server are software appliances. You must not make any changes to the Linux operating system through the command line on these servers unless following official Oracle documentation or under guidance from Oracle Support.

See Also:

3.2 Downloading and Verifying Oracle AVDF Software

Learn about downloading and verifying the software to install Oracle Audit Vault and Database Firewall.

For a fresh installation, you can download the Oracle Audit Vault and Database Firewall software from the Oracle Software Delivery Cloud. You cannot use this package to upgrade. To perform an upgrade from an existing deployment, you can download the upgrade software from the My Oracle Support website.

3.2.1 Downloading the Audit Vault and Database Firewall Software

For a fresh installation of Oracle Audit Vault and Database Firewall, you need to download the software from the Oracle Software Delivery Cloud

  1. Use a web browser to access the Oracle Software Delivery Cloud portal:

    https://edelivery.oracle.com

  2. Click Sign In, and if prompted, enter your User ID and Password.
  3. In the All Categories menu, select Release. In the next field, enter Oracle Audit Vault and Database Firewall, and then click Search.
  4. From the list that is displayed, select the Oracle Audit Vault and Database Firewall version you want to install. Or click the Select icon that appears against the specific release.

    The download is added to your cart. To check the cart contents, click View Items or Continue in the upper right of the screen.

  5. In the next page, verify the details of the installation package, and then click Continue.
  6. Read the Oracle Standard Terms and Restrictions displayed on the page. Select I reviewed and accept the Oracle License Agreement check box, and then click Continue.

    The download page appears and displays the list of ISO files for Oracle Audit Vault and Database Firewall.

    • Audit vault Server install:
    • Database Firewall install:

      Vpart_number.iso Oracle Audit Vault and Database Firewall 20.x.0.0.0 - Database Firewall

      Note:

      Verify the checksum value for both (the Audit Vault Server ISO file and the Database Firewall ISO file). In case of any error or mismatch in the checksum values, download the ISO files and validate the checksum values again.
    • Database Firewall utility:

      Vpart_number.zip Oracle Audit Vault and Database Firewall 20.x.0.0.0 - Utilities. This bundle contains the following files:

      • Npcap installer required for Host Monitoring on Windows: npcap-utility.zip
      • Database Firewall utilities to examine Native Network Encryption traffic for Oracle Database and to gather session information from other database types: dbfw-utility.zip
      • Utilities_README: Instructions for deploying Npcap and Database Firewall utilities patch.
    • Deprecated cipher utility bundle:
    • Vpart_number.pdf Oracle Audit Vault and Database Firewall 20.x.0.0.0 - Release Notes
  7. Next to the Print button, click View Digest Details.

    The listing for the ISO files expands to display the SHA-1 and SHA-256 checksum reference numbers for each ISO file.

  8. Click Download. The Download Manager Installation screen is displayed. The size of the combined ISO files exceeds 11 GB, and takes time to download, depending on the network speed. The estimated download time and speed are displayed in the File Download dialog box.
  9. Click Download the installer, and then click Save File.
  10. Choose a location to save the ISO files. Click Save.

    Alternately, you can save each file individually by clicking its name and then specifying a location for the download.

  11. (For Oracle AVDF 20.3 and earlier) Combine the three AVS ISO files into one ISO file.
    • Linux:
      # cat <part1 file name>.iso <part2 file name>.iso <part3 file name>.iso > avdf-install.iso
    • Microsoft Windows:
      copy /b <part1 file name>.iso+<part2 file name>.iso+<part3 file name>.iso avdf-install.iso

After you have successfully downloaded the Audit Vault and Database Firewall software, you will need to generate the checksum values.

3.2.2 Generating the Checksum Values

After downloading the Audit Vault and Database Firewall software, you need to generate the checksum values.

  1. After the ISO files are downloaded to the specified location, generate a SHA256 checksum for the combined Audit Vault Server ISO file and the Database Firewall ISO file. For Oracle AVDF 20.4 and later, there is a single Audit Vault Server ISO file. For example, on a Linux machine run the following command to generate the checksum: 
    $ sha256sum Vpart_number.iso

    Note:

    Ensure that the checksum matches the value specified in the Release Notes document that is available along with the installable files. In case of any error or mismatch in the checksum values, download the ISO files again, concatenate the Audit Vault Server ISO file (for Oracle AVDF 20.3 and earlier), and validate the checksum values again. For Oracle AVDF 20.4 and later, there is a single Audit Vault Server ISO file and there is no need to concatenate.

3.2.3 Copying the ISO Image to External Media

Optionally, the combined Audit Vault Server ISO image (or single Audit Vault Server image for Oracle AVDF 20.4 and later) or the DBFW ISO image can be copied to another media, like USB. If the files are copied to a Linux based USB medium, then execute these steps.

  1. Execute the following command to open the Linux terminal:
    sudo su -
  2. Execute the following command to discover the USB device:
    lsblk
  3. Execute the following command to erase the data on the USB device:
    dd if=/dev/zero of=/dev/<USB device> status=progress conv=fdatasync
  4. Execute the following command to copy the iso file directly to the USB device:
    dd if=avdf-install.iso of=/dev/<USB device> status=progress conv=fdatasync
  5. Boot the system using the USB device. Ensure the appliance is configured to boot from the USB device.
  6. If the files are copied to a Windows (EFI only - Extensible Firmware Interface) based USB medium, then execute these steps:
    1. Execute the following command to open the Windows command prompt and to load the diskpart:
      diskpart
    2. Execute the following command to discover the USB device:
      list disk
    3. Execute the following command to select the USB device:
      select disk 1
    4. Execute the following commands to erase or format the data on the USB device:
      clean
      create partition primary
      format fs=fat32 label=AVS_20_<x>_0_0_0

      Or

      format fs=fat32 label=DBFW_20_<x>_0_0_0

      Where x is the specific RU release number in Oracle AVDF. For example, use AVS_20_4_0_0_0 or DBFW_20_4_0_0_0 for Oracle AVDF 20.4 (20 RU4).

    5. Execute the following command to add Master Boot Record (MBR) to the USB device:
      active
    6. Execute the following command to exit the diskpart:
      exit

3.3 Installing Audit Vault Server or Database Firewall

Steps for installing Audit Vault Server or Database Firewall.

Audit Vault Server and Database Firewall are delivered as software appliance images, ready to be deployed on physical machines or on virtual machines (VM). Start with the installation of Audit Vault Server and later install Database Firewall.

Note:

  • For Oracle AVDF 20.4 and later, the Audit Vault Server ISO is a single file and there is no need to concatenate. You must combine the downloaded Audit Vault Server ISO files (for Oracle AVDF 20.3 and earlier) into a single ISO file, before starting the Audit Vault Server installation.
  • If you are installing Audit Vault Server on VMware, then set the VMX configuration parameter disk.EnableUUID to TRUE. Also, you must set your virtual machine to use EFI boot. In some versions of VMware this is done by selecting the VM Options tab, then expanding Boot Options, and then setting the firmware to EFI. You must disable secure boot.Without this setting, the Audit Vault Server installation on VMware will fail.
  1. Choose the .iso file depending on whether you are installing on a Virtual Machine or a physical machine.

    Note:

    • In case the .iso file is available on the USB device, then ensure to boot the machine using the bootable USB disk created in the previous section to complete the installation.
    • In case the .iso file is available remotely on another host, then attach the .iso file using remote installation tools to complete the installation.
  2. The system boots and the initial splash screen appears. It indicates the release number you are installing.
  3. Press the Enter key. The installation proceeds.
  4. Enter the new root password when prompted for change.
  5. Enter the same password when prompted for confirmation.

    The system installs the operating system and then reboots.

  6. Continue with the installation and sign in as root user on the console when prompted.

    Caution:

    Logging in as root during install or upgrade uses tmux, a terminal multiplexer, to display persistent information. A user with access to these screens can create new root shells. If you plan to leave the session unattended, Oracle recommends disconnecting from the blue screen by using the CTRL-b d command. To reconnect, log in as root once more.
  7. The installation continues with the following prompts on the screen one after another:
    Installing AVDF bootstrap
Beginning installation of Audit Vault Server dependencies
Creating repository.
Relinking Oracle Database
Installing AVS application.
OR
Installing Database Firewall.
Migrating repository to ASM storage
Updating Oracle Audit Vault and Database Firewall data
Updating UI

....
  8. The installer prompts for network configuration. Select the appropriate network interfaces and click OK.
  9. The following Network settings screen appears.
  10. Enter the following fields:
    1. IP Address of the network interface
    2. Network Mask
    3. Gateway: Enter the IP address of the network interface if a gateway is required. Else, clear the field before saving.
  11. Press OK.
  12. Upon completion of the network settings, the installation continues.
  13. Upon successful installation of Audit Vault Server, the following example (for Oracle AVDF 20.1) message is displayed:
    Audit Vault Server 20.1.0.0.0 installation has completed.
Post install configuration steps must be completed using the
appliance administration console ...
  14. Press OK. The installation of Audit Vault Server is complete.
  15. Upon successful installation of Database Firewall, the following example (for Oracle AVDF 20.1) message is displayed:
    Oracle Database Firewall 20.1.0.0.0 installation has completed.
  16. The installer screen exits and automatically returns to the login prompt.

Note:

The Audit Vault Server and the Database Firewall server are software appliances. You must not make any changes to the Linux operating system through the command line on these servers unless following official Oracle AVDF documentation or under guidance from Oracle Support.

See Also: