Securing CEM Oracle database permissions
search cancel

Securing CEM Oracle database permissions

book

Article ID: 135267

calendar_today

Updated On:

Products

CA Application Performance Management Agent (APM / Wily / Introscope) CA Application Performance Management (APM / Wily / Introscope) INTROSCOPE

Issue/Introduction

A recent internal audit of our APM CEM Oracle database permissions has noted the following items to be corrected.


I need to verify before I give the DBAs permission to proceed, that making these changes will not adversely impact CEM.

CR_AgS 4.1.1 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_ADVISOR'
CR_AgS 4.1.10 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_SCHEDULER'
CR_AgS 4.1.11 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_SQL'
CR_AgS 4.1.12 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_XMLGEN'
CR_AgS 4.1.13 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_XMLQUERY'
CR_AgS 4.1.14 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_FILE'
CR_AgS 4.1.15 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_INADDR'
CR_AgS 4.1.16 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_TCP'
CR_AgS 4.1.18 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_SMTP'
CR_AgS 4.1.21 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_HTTP'
CR_AgS 4.1.22 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'HTTPURITYPE'
CR_AgS 4.1.23 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_XMLSTORE'
CR_AgS 4.1.24 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_XMLSAVE'
CR_AgS 4.1.3 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_JAVA'
CR_AgS 4.1.5 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_JOB'
CR_AgS 4.1.6 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_LDAP'
CR_AgS 4.1.7 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_LOB'
CR_AgS 4.1.8 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_OBFUSCATION_TOOLKIT'
CR_AgS 4.1.9 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_RANDOM'
CR_AgS 4.3.6 Ensure 'CREATE PROCEDURE' Is Revoked from Unauthorized 'GRANTEE'
CR_AgS 4.3.9 Ensure 'CREATE LIBRARY' is Revoked from Unauthorized 'GRANTEE'
CR_AgS 4.5.5 Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on 'DBA_%'
CR_AgS 4.6 Ensure'%ANY%' Is Revoked from Unauthorized 'GRANTEE'
CR_AgS 4.9 Ensure 'EXECUTE ANY PROCEDURE' Is Revoked from 'OUTLN'



Environment

Release : 10.5

Component : APM Agents

Resolution

CEM does not use these processes. So they can be revoked without impacting CEM.
Powered by Wolken Software