Lesson 15

In this module, you have learned how to create and manage users. You have practiced using Security Manager to create a user and you have also had the opportunity to write your own CREATE USER command. By now, you should understand how to do the following:

1. Create a user, assigning default and temporary tablespaces.
2. Change a user's password.
3. Modify a user
4. Lock and unlock a user's account
5. Query the data dictionary to view information about your users

In addition to these items, you have learned a bit about the more common system privileges. These include:

1. CREATE SESSION
2. CREATE VIEW
3. CREATE SEQUENCE
4. CREATE PROCEDURE
5. CREATE TRIGGER
6. CREATE DATABASE LINK
7. ALTER SESSION
8. UNLIMITED TABLESPACE

Question: Has there been any change in "Oracle Enterprise Security Manager" from Oracle 12c to Oracle 19c?
Yes, there have been several changes to Oracle Enterprise Security Manager (OESM) from Oracle 12c to Oracle 19c.
Some of the key changes include:

1. Added support for Oracle Database 19c: OESM 19c provides full support for Oracle Database 19c, including new features such as Multitenant Container Database (CDB), Pluggable Database (PDB), and Oracle Autonomous Database.
2. Enhanced security monitoring and auditing: OESM 19c includes a number of enhancements to its security monitoring and auditing capabilities, such as improved support for Oracle Database Security Zone (DBSZ)^[1], Oracle Database Vault, and Oracle Advanced Security Auditing (OASA).
3. New graphical user interface (GUI): OESM 19c features a new, modern GUI that is designed to be more user-friendly and efficient.
4. Improved performance and scalability: OESM 19c has been optimized for improved performance and scalability, making it better suited for large and complex environments.
5. Support for hybrid cloud deployments: OESM 19c provides support for hybrid cloud deployments, enabling organizations to manage security across both on-premises and cloud-based systems.
6. Additional security features: OESM 19c includes a number of additional security features, such as support for Oracle Identity Cloud Service (IDCS) and Oracle Cloud Access Security Broker (CASB), as well as enhanced threat intelligence and vulnerability management capabilities.

An Oracle wallet is a data structure that contains the private key of a user, a user certificate, and the set of trust points of a user (trusted certificate authorities). See Oracle Database Advanced Security Administrator's Guide for information about managing Oracle wallets. You can use Oracle Wallet Manager to manage Oracle wallets. This is a standalone Java application used to manage and edit the security credentials in Oracle wallets. It performs the following operations:

1. Generates a public-private key pair and creates a certificate request for submission to a certificate authority, and creates wallets
2. Installs a certificate for the entity
3. Manages X.509 version 3 certificates on Oracle Database clients and servers
4. Configures trusted certificates for the entity
5. Opens a wallet to enable access to PKI-based services

This module introduced you to the following terms:

1. cron jobs: Unattended batch jobs that are scheduled with the Unix cron utility.
2. disk contention: The problem resulting when multiple processes are all trying to access data on the same disk, to the point where the disk becomes overloaded and can not respond to all the I/O requests in a timely fashion.
3. hexadecimal: A base-16 numbering system often used to display an exact representation of data in memory. Hexadecimal numbering goes from 1-9, and then from A-F. The hexadecimal A is equivilant to the decimal value 10. After F, the next hexadecimal value is 10, which is equivilant to the decimal value 16. Hexadecimal digits each represent exactly four binary bits, making hexadecimal a convenient alternative to writing long strings of 1s and 0s.
4. tablespace: A logical container in which Oracle stores data. Database administrators map tablespaces onto one or more physical datafiles.
5. quota: A limit on the amount of disk space that a user may use in a particular tablespace.

In the next module, you will learn more about the privileges available and how you can use them to control what database users can and can not do.

Click the Quiz link below to answer a few questions about viewing information in the data dictionary.
Users Data Dictionary - Quiz

[1]Oracle Database Security Zone (DBSZ): Oracle Database Security Zone (DBSZ) is a feature in Oracle Cloud Infrastructure (OCI) that helps enforce consistent security policies across database resources within a compartment. It allows you to create a secure environment for your databases by defining a set of security policies called a security recipe.