If you're working with Release 12, you'll be pleased to hear that our Applications Technology Group Security team has just published a new document detailing our best practices security recommendations for this release.
Like its Release 11i cousin, this document covers the following topics for Release 12:
- A framework for securing different segments of your E-Business Suite deployment, starting with the operating system
- Pointers to essential Apps security reference materials, security alerts to monitor, and recommended patches
- Guidance
for securing internal deployments, including the database at the schema
level and for database net access, the Apps web tier, and end-user PCs - Tips for hardening your EBS security setup
- Monitoring security through Oracle Applications Manager (OAM)
- Guidance
for securing externally-facing deployments in DMZs, including the use
of Responsibility filters, URL filters via the URL firewall, noise
filters via mod_security
- Best Practices for Securing Oracle E-Business Suite Release 12 (Metalink Note 403537.1)
- Securing Your E-Business Suite 11i Deployment
- Best Practices for Securing Oracle E-Business Suite (Metalink Note 189367.1)
Comments (6)
Pankaj,
HP-UX is certified with the E-Business Suite; this is one of our core platforms. You've described a split configuration, which is also certified, but there are specific requirements. For details about those requirements, I'd recommend reviewing this article:
- 10gR2 Database Split Configurations for Release 11i
Accurate hardware sizing estimates depend on the mix of E-Business Suite products used, the transactional volume, the number of concurrent users, your projected database size and growth rate, and many other factors. This analysis can be very detailed and involved, involving modelling worksheets that take these parameters, and others, into consideration. I would recommend pulling your HP and Oracle account teams together to review those assumptions and operational parameters in detail.Regards,
Steven
Posted by Steven Chan | March 7, 2007 9:00 AM
Posted on March 7, 2007 09:00
Dear Schan,
Could you please help me on the server sizing for Oracle e-business suite 11.5 Release 10.2. I dont have much expertise on Oracle EBS and we need to decide on it fast.
HP has quoted the following:
App Server:
2 Nos. Rp 3440 (2 X dual core PA RISC 1.0, 12 GB RAM )
DB Server:
2 Nos. Rx 6600 (1 X Dual core Itanium, 12 GB RAM)
I need the following clarification:
Is the above configuration certified on Oracle EBS ?
Would the Mix of Itanium on DB and PA Risc on App work just fine ?
If you can help me in any way it would be a great help.
warm regards,
Pankaj
Posted by Pankaj Sharma | March 7, 2007 9:23 AM
Posted on March 7, 2007 09:23
Steven,
On some UMX question that we sent Oracle the response was not use Security Groups with Oracle HRMS as it's an "obsolete structure to organize security attributes and to ONLY use Roles and Responsibilities?
Two questions:
1 - are Security Groups obsolete?
2 - we're trying to use UMX and move away from hundreds of responsibilities for over 20 business groups and this appeared to be the best solution. Should we use something else?
thx,
John
Posted by John Stouffer | October 7, 2007 9:18 AM
Posted on October 7, 2007 09:18
John,
It's been a while since I've seen any guidance on security groups. I'm chasing this with our E-Business Suite Security team to get the latest on this.
Regards,
Steven
Posted by Steven Chan | October 8, 2007 9:30 AM
Posted on October 8, 2007 09:30
OAM ==> Oracle Access Manager
Posted by Nat Krishnan | December 26, 2007 11:19 PM
Posted on December 26, 2007 23:19
Nat,
Yes, OAM can stand for Oracle Access Manager. It also can stand for Oracle Applications Manager, the predecessor of the latest Application Management Pack plug-in for Oracle Enterprise Manager. Both are registered Oracle products, and hence, both have the same acronym.
Unfortunately, there are only so many three letter acronyms available, and when you have as many products as Oracle, some of them are bound to overlap.
Regards,
Steven
Posted by Steven Chan | December 27, 2007 11:53 AM
Posted on December 27, 2007 11:53