D77281GC10_les08.pdf - Unauthorized reproduction or distribution prohibited Copyright 2013 Oracle and\/or its affiliates h s a Ak A diti and Auditing d

D77281GC10_les08.pdf - Unauthorized reproduction or...

This preview shows page 1 - 5 out of 50 pages.

A diti d L i Auditing and Logging Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Akash Gupta ([email protected]ฺcom) has a non-transferable license to use this Student Guideฺ Unauthorized reproduction or distribution prohibitedฺ Copyright© 2013, Oracle and/or its affiliatesฺ
Image of page 1
Objectives After completing this lesson, you should be able to: Differentiate between auditing and logging Describe the Fusion Middleware Audit Framework Describe audit output options Configure audit settings Describe audited events and data recorded when an audited event occurs Generate audit reports Configure logging settings Locate and examine logging output Locate log files from other servers in an Oracle Access Manager deployment Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Oracle Access Manager 11 g R2: Administration Essentials 8 - 2 Akash Gupta ([email protected]ฺcom) has a non-transferable license to use this Student Guideฺ Unauthorized reproduction or distribution prohibitedฺ Copyright© 2013, Oracle and/or its affiliatesฺ
Image of page 2
Road Map Auditing and logging Fusion Middleware Audit Framework Audit output options Configuring audit settings Audited events and recorded data Generating audit reports Configuring logging settings Locating and examining logging output Locating log files from other servers Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Oracle Access Manager 11 g R2: Administration Essentials 8 - 3 Akash Gupta ([email protected]ฺcom) has a non-transferable license to use this Student Guideฺ Unauthorized reproduction or distribution prohibitedฺ Copyright© 2013, Oracle and/or its affiliatesฺ
Image of page 3
Auditing and Logging: Overview Auditing: Helps users comply with regulatory requirements For example, Sarbanes-Oxley and the Health Insurance Portability and Accountability Act (HIPAA) Is normally enabled in production environments Records authentication, authorization, and administrative events Uses the Oracle Fusion Middleware Audit Framework (CAF Common Audit Framework): (CAF—Common Audit Framework): Writes to a single, centralized Oracle Database instance or to flat files Integrates with Oracle Business Intelligence Publisher, which provides a predefined set of compliance reports This section describes the auditing and logging features of the Oracle Access Manager server at a high level. Subsequent sections describe auditing and logging in greater detail. Auditing Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Compliance is a major requirement in the enterprise. With regulations such as Sarbanes- Oxley (financial) and Health Insurance Portability and Accountability Act (health care), many organizations must be able to audit identity information and user access of applications and devices. Events that require auditing might include the following: User authentication and access activities Administrative changes to systems By reviewing recorded audit data, compliance officers can perform periodic reviews of compliance policies.
Image of page 4
Image of page 5

You've reached the end of your free preview.

Want to read all 50 pages?

  • Spring '18
  • Ravi Shankar
  • Oracle Database, Oracle Corporation, Oracle Access Manager, distribution prohibitedฺ Copyright©

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture