O112-BP-024200 - Use of the DBMS installation account must be logged.

Information

The DBMS installation account may be used by any authorized user to perform DBMS installation or maintenance. Without logging, accountability for actions attributed to the account is lost.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Develop, document and implement a logging procedure for use of the DBMS software installation account that provides accountability to individuals for any actions taken by the account.

Host system audit logs should be included in the DBMS account usage log along with an indication of the person who accessed the account and an explanation for the access.

Ensure all accounts with administrator privileges are monitored for DBMS host on Windows OS platforms.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Database_11-2g_V2R4_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-219725r879887_rule, STIG-ID|O112-BP-024200, STIG-Legacy|SV-68261, STIG-Legacy|V-54021, Vuln-ID|V-219725

Plugin: OracleDB

Control ID: 0a2870dde312e449bb9c14df2252ba170813f4765d5f2c58bb882c23f44dd8b9