STIGQter STIGQter: STIG Summary: Oracle Database 11g Installation STIG Version: 8 Release: 20 Benchmark Date: 28 Jul 2017:

Use of the DBMS installation account should be logged.

DISA Rule

SV-24377r1_rule

Vulnerability Number

V-15110

Group Title

DBMS installation account use logging

Rule Version

DG0041-ORACLE11

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Develop, document and implement a logging procedure for use of the DBMS software installation account that provides accountability to individuals for any actions taken by the account.

Host system audit logs should be included in the DBMS account usage log along with an indication of the person who accessed the account and an explanation for the access.

Ensure all accounts with administrator privileges are monitored for DBMS host on Windows OS platforms.

Check Contents

Review documented and implemented procedures for monitoring the use of the DBMS software installation account in the System Security Plan.

If use of this account is not monitored or procedures for monitoring its use do not exist or are incomplete, this is a Finding.

NOTE: On Windows systems, The Oracle DBMS software is installed using an account with administrator privileges. Ownership should be reassigned to a dedicated OS account used to operate the DBMS software. If monitoring does not include all accounts with administrator privileges on the DBMS host, this is a Finding.

Vulnerability Number

V-15110

Documentable

False

Rule Version

DG0041-ORACLE11

Severity Override Guidance

Review documented and implemented procedures for monitoring the use of the DBMS software installation account in the System Security Plan.

If use of this account is not monitored or procedures for monitoring its use do not exist or are incomplete, this is a Finding.

NOTE: On Windows systems, The Oracle DBMS software is installed using an account with administrator privileges. Ownership should be reassigned to a dedicated OS account used to operate the DBMS software. If monitoring does not include all accounts with administrator privileges on the DBMS host, this is a Finding.

Check Content Reference

I

Responsibility

Information Assurance Officer

Target Key

1368

Comments