Checklist Summary:

This guide provides high-level recommendations to secure an Oracle database. By configuring the database to the new benchmark, a secure baseline configuration is introduced to protect the system from the common out of the box vulnerabilities. The guide presents steps that can be adopted to securely install, setup, configure, and operate an Oracle database.

Checklist Role:

• Database Server

Known Issues:

Not provided.

Target Audience:

This checklist has been created for IT professionals, information security and database personnel. The document assumes that the reader has experience installing and administering Oracle Server databases.

Target Operational Environment:

• Managed

Testing Information:

Not provided.

Regulatory Compliance:

Not provided.

Comments/Warnings/Miscellaneous:

Refer to Known Issues.

Disclaimer:

Proper use of the recommendations requires careful analysis and adaptation to specific user requirements. The recommendations are not in any way intended to be a quick fix for anyone's information security needs. CIS makes no representations, warranties or covenants whatsoever as to (i) the positive or negative effect of the products or the recommendations on the operation or the security of any particular network, computer system, network device, software, hardware, or any component of any of the foregoing or (ii) the accuracy, reliability, timeliness or completeness of any product or recommendation. CIS is providing the products and the recommendations as is and as available without representations, warranties or covenants of any kind.

Product Support:

Not provided.

Point of Contact:

oracle-feedback@cisecurity.org

Sponsor:

Not provided.

Licensing:

Not provided.

Change History:

Updated URL - 7/26/19
Archived per CIS - 12/20/19

Dependency/Requirements:

URL	Description

References:

Reference URL	Description

NIST checklist record last modified on 12/20/2019