Checklist Summary:

This document is intended to address the recommended security settings for Oracle Database 26ai. This guide was tested against Oracle Database 26ai installed with and without pluggable database support. Future Oracle Database 26ai critical patch updates (CPUs) may impact the recommendations included in this document. To obtain the latest version of this guide, please visit http://benchmarks.cisecurity.org. If you have questions, comments, or have identified ways to improve this guide, please write us at [email protected].

Checklist Role:

• Database Management System

Known Issues:

Not provided.

Target Audience:

This benchmark is intended for system and application administrators, security specialists, auditors, help desk, and platform deployment personnel who plan to develop, deploy, assess, or secure solutions that incorporate Oracle Database 26ai.

Target Operational Environment:

• Managed

Testing Information:

This guide was tested against Oracle Database 26ai installed with and without pluggable database support.

Regulatory Compliance:

Not provided.

Comments/Warnings/Miscellaneous:

Not provided.

Disclaimer:

Please see the below link for our current terms of use: https://www.cisecurity.org/cis-securesuite/cis-securesuite-membership-terms-of-use/

Product Support:

[email protected]

Point of Contact:

[email protected]

Sponsor:

Not provided.

Licensing:

Please see the below link for our current terms of use: https://www.cisecurity.org/cis-securesuite/cis-securesuite-membership-terms-of-use/

Change History:

Dependency/Requirements:

URL	Description

References:

Reference URL	Description

NIST checklist record last modified on 05/28/2026