Scribd
Upload
185 views

Ebs Sec Config Checks

The document provides a summary of security profiles for a database. It identifies the database and version. It then lists configuration for profiles, noting any errors, warnings, or missing profiles. Specifically it finds: - 22 profiles with no errors - 57 profiles with warnings related to outdated last update dates or lower profile levels - 2 missing site profiles

Uploaded by

Rathinavel Subramaniam
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
185 views

Ebs Sec Config Checks

The document provides a summary of security profiles for a database. It identifies the database and version. It then lists configuration for profiles, noting any errors, warnings, or missing profiles. Specifically it finds: - 22 profiles with no errors - 57 profiles with warnings related to outdated last update dates or lower profile levels - 2 missing site profiles

Uploaded by

Rathinavel Subramaniam
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 10

==================================================

= Database NAME @ HOST - SW Versions - DATE of run


==================================================

Database Identification DB Version EBS Release


SYSDATE
-------------------------------------------------- ----------------- ------------
------------------
R1213DV @ 4i-dev121.4iapps.local 11.1.0.7.0 12.1.3
11-JUL-18

1 row selected.

***************************************************
* Check: Security Profiles: Configuration ERRORS
***************************************************

Internal name Profile name Last Updated Profile Level


Profile Context Value
----------------------- ------------------------------ ------------ ---------------
------------------------- ----------
BNE_ALLOW_NO_SECURITY_R BNE Allow No Security Rule 20-JUN-18 Site
Y
ULE

BNE_ALLOW_NO_SECURITY_R BNE Allow No Security Rule 28-JUN-05 User


DBIADI Y
ULE

DIAGNOSTICS Utilities:Diagnostics 07-JUL-16 Site


Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 22-SEP-06 Responsibility
WIP_WS_ADMIN Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 07-SEP-06 Responsibility
CSZ_SDESK_AGENT Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 01-SEP-06 Responsibility
CSZ_CASE_SPECIALIST Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 09-JUN-05 Responsibility
ISC_DEPOT_INT Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 13-DEC-05 Responsibility
CSF_PORTAL Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 29-SEP-06 Responsibility
CSZ_CS_SPECIALIST Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 17-APR-02 Responsibility
CA_MGR_SS_V4 Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 27-MAR-02 Responsibility
CA_EE_SS_V4 Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 19-JUL-04 Responsibility
ADS_USHR2_EMP_DIRECT_ACCE Y

SS

FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 19-JUL-04 Responsibility


ADS_USHR2_LINE_MANAGER_AC Y

CESS

FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 14-SEP-06 Responsibility


SUPPORT_ENGINEER Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 25-JAN-08 Responsibility
HR_CSZ_SDESK_AGENT Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-FEB-17 Responsibility
XX_TCT_2016 Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 13-FEB-07 Responsibility
ADS_KWHR_IRC_EXT_CANDIDAT Y

FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 29-MAR-18 Site


Y
FND_DIAGNOSTICS FND: Diagnostics 22-OCT-01 Responsibility
SYSTEM_ADMINISTRATOR Y
FND_DIAGNOSTICS FND: Diagnostics 09-JUL-18 Site
Y
FND_FUNCTION_VALIDATION FND Function Validation Level 17-JAN-07 Site
NONE
_LEVEL

FND_VALIDATION_LEVEL FND Validation Level 06-OCT-06 Site


NONE

22 rows selected.

***************************************************
* Check: Security Profiles: Configuration WARNINGS
***************************************************

Internal name Profile name Last Updated Profile Level


Profile Context Value
----------------------- ------------------------------ ------------ ---------------
------------------------- ----------
DIAGNOSTICS Utilities:Diagnostics 27-FEB-17 User
OPERATIONS Y
DIAGNOSTICS Utilities:Diagnostics 11-JAN-98 User
HRSETUP Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 06-OCT-03 User
JKBOWERS Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 21-SEP-04 User
SERVICES Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 12-OCT-04 User
SVYADMIN Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 14-OCT-04 User
MGRMKT Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
AAWANG Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
AAPEX Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
PADAMS Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
PAVON Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
JAXLE Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
BALLIANCE Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
ALEE Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
TALLOTE Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
TASCEND Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
PDAVIS Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
NELTON Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
MGRAY Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
LROUGE Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
KKING Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
HHARRIS Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
GHOLLY Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
FTHOMAS Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
EGORE Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-SEP-04 User
CCAIN Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 10-SEP-04 User
LJONES Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 23-JUN-03 User
KPLO Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 14-NOV-02 User
AYORK Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 07-FEB-02 User
DMICHAEL Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 29-OCT-17 User
SAYEED.PC Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 29-NOV-17 User
[email protected] Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 16-DEC-17 User
VIVAREQ1 Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 12-MAY-17 User
TCT2016 Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 04-AUG-17 User
OPERATIONS Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 15-OCT-04 User
TRADECPG Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 15-OCT-04 User
TRADEMGR Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 15-OCT-04 User
RBATES Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 15-OCT-04 User
DALITE Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 15-OCT-04 User
JAROCK Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 15-OCT-04 User
WAKEN Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 15-OCT-04 User
SAMANDA Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 15-OCT-04 User
PALDO Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 12-NOV-04 User
TBROWN Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 30-MAR-05 User
BJOSEPH Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 09-JUN-06 User
PDESMOND Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 14-SEP-05 User
JCLARK Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 20-FEB-06 User
OSCSU Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 14-FEB-07 User
[email protected] Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 11-DEC-06 User
COMMSUSER Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 16-JAN-07 User
PRPADMIN Y
FND_CUSTOM_OA_DEFINTION Personalize Self-Service Defn 19-DEC-07 User
HDOZER Y
FND_DIAGNOSTICS FND: Diagnostics 29-NOV-17 User
[email protected] Y
FND_DIAGNOSTICS FND: Diagnostics 12-MAY-17 User
TCT2016 Y
FND_DIAGNOSTICS FND: Diagnostics 22-SEP-04 User
CBROWN Y
FND_DIAGNOSTICS FND: Diagnostics 11-OCT-04 User
AUDITOR Y
FND_DIAGNOSTICS FND: Diagnostics 11-OCT-04 User
OPERATIONS Y
FND_SECURITY_FILETYPE_R Attachment File Upload Restric 22-AUG-11 Site
Y
ESTRICT_DFLT tion Default

57 rows selected.

***************************************************
* Check: Security Profiles: Configuration MISSING
***************************************************

Missing Site Profiles


----------------------------------------
FND_SERVER_SEC
FND_SERVER_IP_SEC

2 rows selected.

***************************************************
* Check: Application Users With Default Passwords
***************************************************

Apps Users - Default Passwords


--------------------------------------------------
AME_INVALID_APPROVER
ASGADM
GUEST
IBE_GUEST
IRC_EMP_GUEST
IRC_EXT_GUEST
MOBILEADM
XML_USER
8 rows selected.

***************************************************
* Check: DB Users With Default Passwords
***************************************************

PL/SQL procedure successfully completed.

USERNAME ACCOUNT_STATUS
------------------------ --------------------
ABM OPEN
AD_MONITOR OPEN
AHL OPEN
AHM OPEN
AK OPEN
AMF OPEN
AMS OPEN
AMV OPEN
AMW OPEN
AOLDEMO OPEN
AP OPEN
APPLSYS OPEN
APPLSYSPUB OPEN
APPS OPEN
AR OPEN
ASF OPEN
ASG OPEN
ASL OPEN
ASN OPEN
ASO OPEN
ASP OPEN
AST OPEN
AUTHORIA OPEN
AX OPEN
AZ OPEN
BEN OPEN
BIC OPEN
BIL OPEN
BIM OPEN
BIS OPEN
BIV OPEN
BIX OPEN
BNE OPEN
BOM OPEN
BSC OPEN
CE OPEN
CFD OPEN
CLN OPEN
CN OPEN
CRP OPEN
CS OPEN
CSC OPEN
CSD OPEN
CSDUMMY OPEN
CSE OPEN
CSF OPEN
CSI OPEN
CSL OPEN
CSM OPEN
CSMIG OPEN
CSP OPEN
CSR OPEN
CSS OPEN
CTXSYS OPEN
CTXTEST OPEN
CUA OPEN
CUE OPEN
CUF OPEN
CUG OPEN
CUI OPEN
CUN OPEN
CUP OPEN
CUS OPEN
CZ OPEN
DBSNMP OPEN
DDD OPEN
DIP LOCKED
DLD OPEN
DMS OPEN
DMSYS EXPIRED & LOCKED
DOM OPEN
EAA OPEN
EAM OPEN
EC OPEN
ECX OPEN
EDR OPEN
EDWEUL_US OPEN
EGO OPEN
ENG OPEN
ENI OPEN
EUL_US OPEN
EVM OPEN
FA OPEN
FEM OPEN
FII OPEN
FLM OPEN
FPA OPEN
FPT OPEN
FRM OPEN
FTE OPEN
FUN OPEN
FV OPEN
GCS OPEN
GL OPEN
GMA OPEN
GMD OPEN
GME OPEN
GMF OPEN
GMI OPEN
GML OPEN
GMP OPEN
GMS OPEN
GR OPEN
HCC OPEN
HR OPEN
HRI OPEN
HXC OPEN
HXT OPEN
IA OPEN
IBA OPEN
IBC OPEN
IBE OPEN
IBP OPEN
IBU OPEN
IBY OPEN
ICX OPEN
IEB OPEN
IEC OPEN
IEM OPEN
IEO OPEN
IES OPEN
IEU OPEN
IEX OPEN
IGC OPEN
IGF OPEN
IGI OPEN
IGS OPEN
IGW OPEN
IMC OPEN
IMT OPEN
INTERNET_APPSERVER_REGIS OPEN
TRY

INV OPEN
IP OPEN
IPA OPEN
IPD OPEN
ISC OPEN
ITG OPEN
JA OPEN
JG OPEN
JL OPEN
JTF OPEN
JTI OPEN
JTM OPEN
JTR OPEN
JTS OPEN
LBACSYS OPEN
LNS OPEN
MDDATA EXPIRED & LOCKED
MDSYS OPEN
ME OPEN
MFG OPEN
MOBILEADMIN OPEN
MRP OPEN
MSC OPEN
MSD OPEN
MSO OPEN
MSR OPEN
MST OPEN
MWA OPEN
ODM OPEN
ODM_MTR OPEN
ODS OPEN
OE OPEN
OKB OPEN
OKC OPEN
OKE OPEN
OKI OPEN
OKL OPEN
OKO OPEN
OKR OPEN
OKS OPEN
OKX OPEN
OLAPSYS OPEN
ONT OPEN
OPI OPEN
ORACLE_OCM EXPIRED & LOCKED
ORDPLUGINS OPEN
ORDSYS OPEN
OSM OPEN
OTA OPEN
OUTLN OPEN
OWAPUB OPEN
OZF OPEN
OZP OPEN
OZS OPEN
PA OPEN
PJI OPEN
PJM OPEN
PMI OPEN
PN OPEN
PO OPEN
POA OPEN
POM OPEN
PON OPEN
POS OPEN
PROJMFG OPEN
PRP OPEN
PSA OPEN
PSB OPEN
PSP OPEN
PTE OPEN
PTG OPEN
PV OPEN
QA OPEN
QOT OPEN
QP OPEN
QRM OPEN
REPADMIN OPEN
RESTRICTED_US OPEN
RG OPEN
RLA OPEN
RLM OPEN
SI_INFORMTN_SCHEMA EXPIRED & LOCKED
SPATIAL_CSW_ADMIN_USR EXPIRED & LOCKED
SPATIAL_WFS_ADMIN_USR EXPIRED & LOCKED
SSP OPEN
SYS OPEN
SYSTEM OPEN
TRACESVR OPEN
TSMSYS EXPIRED & LOCKED
VEA OPEN
VEH OPEN
WH OPEN
WIP OPEN
WKSYS OPEN
WK_TEST OPEN
WMS OPEN
WPS OPEN
WSH OPEN
WSM OPEN
XDO OPEN
XDP OPEN
XLA OPEN
XLE OPEN
XNB OPEN
XNC OPEN
XNI OPEN
XNM OPEN
XNP OPEN
XNS OPEN
XTR OPEN
ZFA OPEN
ZPB OPEN
ZSA OPEN
ZX OPEN

245 rows selected.

***************************************************
* Check: For excessive privs in APPLSYSPUB
***************************************************

no rows selected

***************************************************
* Check: Oracle Applications User Passwords Migrated to Non-Reversible Hash
Password
***************************************************

Password Mode
---------------------------------------
WARNING:Hashed passwords are not on

PL/SQL procedure successfully completed.

***************************************************
* Check: Server Security Status
***************************************************

Server Security Status


-----------------------------
Server Security is on

PL/SQL procedure successfully completed.

***************************************************
* Check: SSL Status
***************************************************

SSL Mode
-------------------------------
WARNING: SSL/TLS is not enabled

1 row selected.

***************************************************
* Check: Credit Card Encryption Status
***************************************************

EBS level - 12.1.3


Credit Card Encryption Status
-----------------------------
WARNING: Encryption not enabled

Supplemental Credit Card Data Encryption Status


-----------------------------------------------
WARNING: Supplemental credit card data is not encrypted

Enhanced Hashing
----------------
WARNING: Enhanced Hashing is not on

PL/SQL procedure successfully completed.

***************************************************
* Check Status of 12.2 Security Features
***************************************************

no rows selected

***************************************************
* Check: Users with Access to Sensitive Pages
***************************************************
NOTE: EBSCheckSensitivePageAccess.sql is disabled by default - it may be verbose

==================================================
= Done; Now review the results from the spool file
currently spooling to EBSSecConfigChecks.txt

You might also like