Symantec DLP error "ORA-27486: insufficient privileges" when deleting incidents
search cancel

Symantec DLP error "ORA-27486: insufficient privileges" when deleting incidents

book

Article ID: 198173

calendar_today

Updated On:

Products

Data Loss Prevention Data Loss Prevention Enforce Data Loss Prevention Oracle Standard Edition 2

Issue/Introduction

Symantec Data Loss Prevention

When running the incident deletion job, deletion fails.

This error is seen in the localhost.x.log on the Enforce Server:

SEVERE [com.vontu.manager] Incident Deletion Failed
Cause:
java.sql.SQLException: ORA-27486: insufficient privileges
ORA-06512: at "SYS.DBMS_ISCHED", line 9387
ORA-06512: at "SYS.DBMS_ISCHED", line 9376
ORA-06512: at "SYS.DBMS_ISCHED", line 175
ORA-06512: at "SYS.DBMS_ISCHED", line 9302
ORA-06512: at "SYS.DBMS_IJOB", line 196
ORA-06512: at "SYS.DBMS_JOB", line 168
ORA-06512: at "PROTECT.ID_INCIDENTDELETOR", line 3314
ORA-06512: at line 1

Environment

Data Loss Prevention 15.X / 16.X


Oracle 12c
Oracle 19c

Cause

The database 'protect' user is missing permissions to run the deletion.

Resolution

In the Oracle 12c database, grant the "protect" user the EXECUTE  DBMS_JOB privilege.
If the database is Oracle 19c, then the "protect" user should be granted both the EXECUTE DBMS_JOB and CREATE JOB privileges. 

Replace Schema User in the following SQL with your schema user name. The default schema user name is protect.

grant EXECUTE  on DBMS_JOB  to Schema User;
grant CREATE JOB to Schema User;

Powered by Wolken Software