Removing privileges from Oracle affects DLP operation
search cancel

Removing privileges from Oracle affects DLP operation

book

Article ID: 374110

calendar_today

Updated On:

Products

Data Loss Prevention Core Package Data Loss Prevention Oracle Standard Edition 2

Issue/Introduction

Security for the Database such as hardening, can affect Symantec DLP operation. 

Cause

 DLP relies on the PUBLIC permissions to accomplish basic tasks with the DB. Any hardening of the Oracle database may cause issues.

Resolution

Our recommendation is to not revoke any privilege that is required by DLP. This includes the PUBLIC privileges.

If you revoke a privilege from PUBLIC and assign it to the schema owner it will be on the DBA to verify that DLP still works correctly. If troubleshooting is required, we will ask that you restore the privileges to their default settings before being able to troubleshoot.

 

Additional Information

To verify the privileges that are granted to Protect on creation please see "Verify the protect database user has the correct privileges in DLP": https://knowledge.broadcom.com/external/article?articleId=160062