Symantec DLP error "ORA-27486: insufficient privileges" when deleting incidents

book

Article ID: 198173

calendar_today

Updated On:

Products

Data Loss Prevention Data Loss Prevention Enforce

Issue/Introduction

Symantec Data Loss Prevention

When running the incident deletion job, deletion fails.

This error is seen in the localhost.x.log on the Enforce Server:

SEVERE [com.vontu.manager] Incident Deletion Failed
Cause:
java.sql.SQLException: ORA-27486: insufficient privileges
ORA-06512: at "SYS.DBMS_ISCHED", line 9387
ORA-06512: at "SYS.DBMS_ISCHED", line 9376
ORA-06512: at "SYS.DBMS_ISCHED", line 175
ORA-06512: at "SYS.DBMS_ISCHED", line 9302
ORA-06512: at "SYS.DBMS_IJOB", line 196
ORA-06512: at "SYS.DBMS_JOB", line 168
ORA-06512: at "PROTECT.ID_INCIDENTDELETOR", line 3314
ORA-06512: at line 1

Cause

The database 'protect' user is missing permissions to run the deletion.

Environment

Data Loss Prevention 15.X
Oracle 12c
Oracle 19c

Resolution

In the Oracle 12c database, give the PROTECT user the EXECUTE  DBMS_JOB privilege.
If the database is Oracle 19c, then the PROTECT user needs both the EXECUTE DBMS_JOB and CREATE JOB privileges. Re

Replace Schema User with you schema user name. The default schema user name is protect.

grant EXECUTE  on DBMS_JOB  to Schema User;
grant create job to Schema User;