Security Best Practices for Release 12

If you're working with Release 12, you'll be pleased to hear that our Applications Technology Group Security team has just published a new document detailing our best practices security recommendations for this release.

Like its Release 11i cousin, this document covers the following topics for Release 12:

  • A framework for securing different segments of your E-Business Suite deployment, starting with the operating system
  • Pointers to essential Apps security reference materials, security alerts to monitor, and recommended patches
  • Guidance for securing internal deployments, including the database at the schema level and for database net access, the Apps web tier, and end-user PCs
  • Tips for hardening your EBS security setup
  • Monitoring security through Oracle Applications Manager (OAM)
  • Guidance for securing externally-facing deployments in DMZs, including the use of Responsibility filters, URL filters via the URL firewall, noise
    filters via mod_security
For details, see:

Pankaj,HP-UX is certified with the E-Business Suite; this is one of our core platforms.  You've described a split configuration, which is also certified, but there are specific requirements.  For details about those requirements, I'd recommend reviewing this article:10gR2 Database Split Configurations for Release 11iAccurate hardware sizing estimates depend on the mix of E-Business Suite products used, the transactional volume, the number of concurrent users, your projected database size and growth rate, and many other factors.  This analysis can be very detailed and involved, involving modelling worksheets that take these parameters, and others, into consideration.  I would recommend pulling your HP and Oracle account teams together to review those assumptions and operational parameters in detail. Regards,Steven 

Posted by Steven Chan on March 07, 2007 at 01:00 AM PST #

Dear Schan,

Could you please help me on the server sizing for Oracle e-business suite 11.5 Release 10.2. I dont have much expertise on Oracle EBS and we need to decide on it fast.

HP has quoted the following:

App Server:

2 Nos. Rp 3440 (2 X dual core PA RISC 1.0, 12 GB RAM )

DB Server:

2 Nos. Rx 6600 (1 X Dual core Itanium, 12 GB RAM)

I need the following clarification:

Is the above configuration certified on Oracle EBS ?

Would the Mix of Itanium on DB and PA Risc on App work just fine ?

If you can help me in any way it would be a great help.

warm regards,


Posted by Pankaj Sharma on March 07, 2007 at 01:23 AM PST #

On some UMX question that we sent Oracle the response was not use Security Groups with Oracle HRMS as it's an "obsolete structure to organize security attributes and to ONLY use Roles and Responsibilities?

Two questions:
1 - are Security Groups obsolete?
2 - we're trying to use UMX and move away from hundreds of responsibilities for over 20 business groups and this appeared to be the best solution. Should we use something else?


Posted by John Stouffer on October 07, 2007 at 02:18 AM PDT #

John,It's been a while since I've seen any guidance on security groups.  I'm chasing this with our E-Business Suite Security team to get the latest on this.Regards,Steven  

Posted by Steven Chan on October 08, 2007 at 02:30 AM PDT #

OAM ==> Oracle Access Manager

Posted by Nat Krishnan on December 26, 2007 at 03:19 PM PST #

Nat,Yes, OAM can stand for Oracle Access Manager.  It also can stand for Oracle Applications Manager, the predecessor of the latest Application Management Pack plug-in for Oracle Enterprise Manager.  Both are registered Oracle products, and hence, both have the same acronym.Unfortunately, there are only so many three letter acronyms available, and when you have as many products as Oracle, some of them are bound to overlap.Regards,Steven

Posted by Steven Chan on December 27, 2007 at 03:53 AM PST #


Is this the latest version ?
This one is last updated on 2007.
I need this for R12.1.3 with 11g R2

Can you Pl., help me with this

Edward Jayaraj

Posted by Edward Jayaraj on December 14, 2010 at 07:46 PM PST #


Yes, Note 403537.1 is the latest version available for EBS R12.


Posted by Steven Chan on December 15, 2010 at 02:49 AM PST #

Post a Comment:
  • HTML Syntax: NOT allowed


« November 2015