My Oracle Support Banner

How to Create a Customized Compliance Standard Repository Rule For the Database Target (Doc ID 1900268.1)

Last updated on OCTOBER 20, 2018

Applies to:

Enterprise Manager for Oracle Database - Version 12.1.0.1.0 to 12.1.0.6.0 [Release 12.1]
Information in this document applies to any platform.

Goal

The goal of this article is to create a custom compliance standard repository rule for a database target. 

Compliance rules are a set of rules that check for adherence to Oracle best practice recommendations.  A target that adheres to the best practice guidelines is considered 'compliant'.  A target that does not follow the best practices is considered 'non compliant' because the compliance standard rule has been violated.  Oracle provides a set of compliance standards and rules which can be associated to a to a target.  For example, Cloud Control ships with the following Oracle provided database compliance standards, "Basic Security Configuration for Oracle Database", "High Security Configuration for Oracle Database","Certification for Oracle Database", "Configuration Best Practices for Oracle Database", "Storage Best Practices for Oracle Database", "Patchable Configuration for Oracle Database", "Support Policy for Oracle Database".  Each of these compliance standards has a set of rules associated with it.  For example the 'Storage Best Practices for Oracle Databases' consists of rules such as 'Tablespace Not Using Automatic Segment-Space Management','Insufficient Number of Redo Logs',''Checks for rollback segments in SYSTEM tablespace'

However it may be possible that extra rules are required (on top of those provided by Oracle) to ensure compliance to different local standards.  This article demonstrates how a custom compliance standard can be created.   This note will use the example of creating a compliance rule which checks for any users who are using the default profile.

 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
 A) Create a Configuration Extension to collect the data on which the compliance rule will be based.
 1) Identify the sql statement that will retrieve the information (which will be used as a basis for the compliance rule evaluation) from the database
 2) Create the configuration extension
 3) Deploy the configuration extension
 4)View the deployed configuration extension
 B) Associate the Configuration Extension with the Compliance rule.
 C) Create a Compliance Standard
 D) Associate the Compliance Standard with a Database Target
 D) Check the Compliance Standard on the Database Home Page
 E) To display the Compliance Standard on the database home page/compliances section
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.