Control Compliance Suite (CCS)
When running a CER (Collection-Evaluation-Reporting) job using the CIS Oracle Database 19c Benchmark v1.0.0 standard to perform data collection on Oracle 19c assets, the data collection may fail with the following error messages:
CCS 12.x
SCU 2021-3 or newer
As per the CIS documentation, check 2.2.15 in the 'CIS Oracle Database 19c Benchmark v1.0.0' standard relies on the following custom views for data collection, which are not predefined:
Therefore, if you did not create the custom views, and when you run a CER job for the CIS Oracle Database 19c Benchmark v1.0.0 standard, it fails to collect data from Oracle 19c assets. For more information, see https://workbench.cisecurity.org/benchmarks/5799/sections/597488.html
To resolve this issue and successfully perform data collection on systems running Oracle 19c using the CIS Oracle Database 19c Benchmark v1.0.0 standard, the following prerequisites must be met. To fulfill the prerequisites, sysdba or equivalent privileges are required.
Use the following commands to create the custom views:
Use the following commands to grant the SELECT privilege to the custom views:
NOTE: Alternately, if you do not want to evaluate check 2.2.15, you can create a copy of the CIS Oracle Database 19c Benchmark v1.0.0 standard and delete check 2.2.15 from the copied standard and use it for further assessment.
This information can also be found in the CCS SCU 2021-3 documentation:
https://techdocs.broadcom.com/us/en/symantec-security-software/information-security/control-compliance-suite/SCU-2021-3/Security-Content-Update/Troubleshooting/troubleshooting-data-collection-on-oracle-19c-scu-2021-3.html
Optional information on CIS Benchmarks:
Center for Internet Security (CIS) homepage: https://www.cisecurity.org/