How to Register a target database on AVDF console: In this article we will discuss about how to Register a target database on AVDF console. We have used here AVDF version 20.10 and our Target Database is Oracle 19c Standalone database.
Steps to Register a target database on AVDF:
- Login to the Target Database and create a user
- Go to the Audit Vault Agent Home location and execute below scripts
- Login AVDF Console as administrator user
- Register the target database on AVDF console
- Enter Target database details
- Add Audit Trail details in Audit Data Collection option
- Add Database Firewall Monitoring option
- Enter details for Database Firewall Monitor
- Add Audit Trail type Network in Audit Data Collection option
- Registration Process is completed
Login to the Target Database and create a user:
Connect to the Target Database and create a user to register target database on AVDF console. Here we have create a user name “avmonitor“.
[oracle@test ~]$
[oracle@test ~]$ ps -ef | grep pmon
oracle 4120 1 0 12:20 ? 00:00:01 ora_pmon_orcl
oracle 14764 6498 33 14:03 pts/1 00:00:00 grep --color=auto pmon
[oracle@test ~]$
[oracle@test ~]$ ps -ef | grep tns
root 23 2 0 11:55 ? 00:00:00 [netns]
oracle 4079 1 0 12:19 ? 00:00:00 /u01/app/oracle/product/19c/dbhome_1/bin/tnslsnr LISTENER -inherit
oracle 14769 6498 0 14:03 pts/1 00:00:00 grep --color=auto tns
[oracle@test ~]$
[oracle@test ~]$
[oracle@test ~]$ tnsping orcl
TNS Ping Utility for Linux: Version 19.0.0.0.0 - Production on 01-SEP-2024 14:03:47
Copyright (c) 1997, 2019, Oracle. All rights reserved.
Used parameter files:
/u01/app/oracle/product/19c/dbhome_1/network/admin/sqlnet.ora
Used TNSNAMES adapter to resolve the alias
Attempting to contact (DESCRIPTION = (ADDRESS = (PROTOCOL = TCP)(HOST = test)(PORT = 1521)) (CONNECT_DATA = (SERVER = DEDICATED) (SERVICE_NAME = orcl)))
OK (30 msec)
[oracle@test ~]$
[oracle@test ~]$
[oracle@test ~]$ . oraenv
ORACLE_SID = [orcl] ? orcl
The Oracle base remains unchanged with value /u01/app/oracle
[oracle@test ~]$
[oracle@test ~]$
[oracle@test ~]$ sqlplus / as sysdba
SQL*Plus: Release 19.0.0.0.0 - Production on Sun Sep 1 14:04:27 2024
Version 19.3.0.0.0
Copyright (c) 1982, 2019, Oracle. All rights reserved.
Connected to:
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
SQL>
SQL> create user avmonitor identified by avmonitor;
User created.
SQL>Go to the Audit Vault Agent Home location and execute below scripts:
Go to the av plugins config location in Audit Vault Agent Home and execute oracle_user_setup.sql script as below.
[oracle@test ~]$
[oracle@test ~]$ cd /u01/app/oracle/avdf_agent/av/plugins/com.oracle.av.plugin.oracle/config/
[oracle@test config]$
[oracle@test config]$
[oracle@test config]$ ls -ltr
total 80
-rw-r-----. 1 oracle oinstall 75 Sep 26 2023 version.txt
-rw-r-----. 1 oracle oinstall 933 Sep 26 2023 SyslogFileProperties.xml
-rwxr-xr-x. 1 oracle oinstall 13230 Sep 26 2023 oracle_user_setup.sql
-rwxr-xr-x. 1 oracle oinstall 9071 Sep 26 2023 oracle_drop_db_permissions.sql
-rwxr-xr-x. 1 oracle oinstall 6579 Sep 26 2023 oracle_AVDF_E1_user_setup.sql
-rwxr-xr-x. 1 oracle oinstall 7193 Sep 26 2023 oracle_AVDF_E1_drop_db_permissions.sql
-rwxr-xr-x. 1 oracle oinstall 9660 Sep 26 2023 oracle_AVDF_dbcs_user_setup.sql
-rwxr-xr-x. 1 oracle oinstall 9614 Sep 26 2023 oracle_AVDF_dbcs_drop_db_permissions.sql
-rw-r-----. 1 oracle oinstall 1076 Sep 26 2023 DirectoryTrailProperties.xml
[oracle@test config]$
[oracle@test config]$
[oracle@test config]$ sqlplus / as sysdba
SQL*Plus: Release 19.0.0.0.0 - Production on Sun Sep 1 14:13:34 2024
Version 19.3.0.0.0
Copyright (c) 1982, 2019, Oracle. All rights reserved.
Connected to:
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
SQL>
SQL> @oracle_user_setup.sql avmonitor SETUP
Session altered.
Enter username for granting privileges:
Setting username to 'avmonitor'
Enter mode (SETUP/SPA/ENTITLEMENT/DBSAT_DISCOVERY):
SETUP for granting Audit Collection and Audit Policy Management privileges
SPA for granting Stored Procedure Auditing privileges
ENTITLEMENT for granting Entitlement retrieval privileges
DBSAT_DISCOVERY for granting Data Discovery and Security Assesment privileges
Setting mode to 'SETUP'
Granting privileges to "AVMONITOR" ... Done.
Disconnected from Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
[oracle@test config]$
[oracle@test config]$
[oracle@test config]$ sqlplus / as sysdba
SQL*Plus: Release 19.0.0.0.0 - Production on Sun Sep 1 14:22:10 2024
Version 19.3.0.0.0
Copyright (c) 1982, 2019, Oracle. All rights reserved.
Connected to:
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
SQL>
SQL> @oracle_user_setup.sql avmonitor SPA
Session altered.
Enter username for granting privileges:
Setting username to 'avmonitor'
Enter mode (SETUP/SPA/ENTITLEMENT/DBSAT_DISCOVERY):
SETUP for granting Audit Collection and Audit Policy Management privileges
SPA for granting Stored Procedure Auditing privileges
ENTITLEMENT for granting Entitlement retrieval privileges
DBSAT_DISCOVERY for granting Data Discovery and Security Assesment privileges
Setting mode to 'SPA'
Granting privileges to "AVMONITOR" ... Done.
Disconnected from Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
[oracle@test config]$
[oracle@test config]$
[oracle@test config]$
[oracle@test config]$ sqlplus / as sysdba
SQL*Plus: Release 19.0.0.0.0 - Production on Sun Sep 1 14:22:25 2024
Version 19.3.0.0.0
Copyright (c) 1982, 2019, Oracle. All rights reserved.
Connected to:
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
SQL>
SQL> @oracle_user_setup.sql avmonitor ENTITLEMENT
Session altered.
Enter username for granting privileges:
Setting username to 'avmonitor'
Enter mode (SETUP/SPA/ENTITLEMENT/DBSAT_DISCOVERY):
SETUP for granting Audit Collection and Audit Policy Management privileges
SPA for granting Stored Procedure Auditing privileges
ENTITLEMENT for granting Entitlement retrieval privileges
DBSAT_DISCOVERY for granting Data Discovery and Security Assesment privileges
Setting mode to 'ENTITLEMENT'
Granting privileges to "AVMONITOR" ... Done.
Disconnected from Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
[oracle@test config]$
[oracle@test config]$
[oracle@test config]$ sqlplus / as sysdba
SQL*Plus: Release 19.0.0.0.0 - Production on Sun Sep 1 14:22:39 2024
Version 19.3.0.0.0
Copyright (c) 1982, 2019, Oracle. All rights reserved.
Connected to:
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
SQL>
SQL> @oracle_user_setup.sql avmonitor DBSAT_DISCOVERY
Session altered.
Enter username for granting privileges:
Setting username to 'avmonitor'
Enter mode (SETUP/SPA/ENTITLEMENT/DBSAT_DISCOVERY):
SETUP for granting Audit Collection and Audit Policy Management privileges
SPA for granting Stored Procedure Auditing privileges
ENTITLEMENT for granting Entitlement retrieval privileges
DBSAT_DISCOVERY for granting Data Discovery and Security Assesment privileges
Setting mode to 'DBSAT_DISCOVERY'
Granting privileges to "AVMONITOR" ... Done.
Disconnected from Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
[oracle@test config]$Login AVDF Console as administrator user:
Login AVDF console using the administrator user here ‘avadmin’.
Register the target database on AVDF console
Click on Targets option then click on Register option
Enter Target database details:
Add target Database details and test connection and save it.
Add Audit Trail details in Audit Data Collection option:
You required to add Audit Trail details in Audit Data Collection option.
Add Database Firewall Monitoring option:
Click on Add in Database Firewall Monitoring option.
Enter details for Database Firewall Monitor:
Fill the required details for Database Firewall Monitor and save it.
Add Audit Trail type Network in Audit Data Collection option:
After added Database Firewall Monitor add Netwok audit trail type in Audit Data Collection option and save it.
Now click on Save option to complete the Target database register process.
Registration Process is completed:
Now target database registration process is successfully completed.
Click on below link for another AVDF related details…
- How to install Oracle Audit Vault Server
- How to install Oracle Database Firewall Server
- How to Register Database Firewall with Audit Vault Server
- How to install Audit Vault Agent on Linux
- How to install Host Monitor Agent on Linux
I hope my written content will helped you. Your suggestions/feedback are most welcome from orakldba.com. Keep learning… Have a great day!!!
Please comment here for your any query related to above content. You can write to mail me through my Email.
Email :- orakldba@gmail.com
LinkedIn :- https://linkedin.com/in/prasantakirtaniya
Twitter :- https://twitter.com/prasantadba
Facebook Page :- https://www.facebook.com/orakldba
Website :- https://orakldba.com
ACE Profile :- https://ace.oracle.com/apex/ace/profile/prasantakirtaniya
Oracle Community :- https://community.oracle.com/customerconnect/profile/discussions/prasantakirtaniya
1 thought on “How to Register a target database on AVDF console”