The book covers a broad range of oracle solaris securityrelated topics such as auditing, cryptographic services, management of public key technologies, bart, kerberos, pam, privileges, rbac, sasl, and secure shell. Enabling basic security mode in solaris 10, enabling basic security mode in solaris. Enabling and using auditing oracle vm server for sparc 2. All product names, logos, and brands are property of their respective owners. This book is for anyone who is responsible for administering the security requirements for one or more systems that run the oracle solaris operating system. Disa stig solaris 10 x86 v1r25 audit last updated april 17, 2020 1. Oracle solaris is delivered preconfigured for basic auditing. This section provides an example of how you configure and implement oracle solaris auditing.
It also discusses some ways a site may wish to customize a configuration and gives an example interpretation of a simple audit trail. Snare is a collection of software tools that collect audit log data from a variety of operating systems and applications to facilitate centralised log analysis. This article describes the default configuration and major differences between oracle solaris 10 and oracle solaris 11 configuration. However, the recommended practice is to customize your audit configuration as much as possible before you start the audit service. Some sites may wish to have custom audit configuration. Hi all, any one has, sun solaris audit program which covers everything one need to check as a security auditor. Analysis of the oracle solaris configuration, including networking, storage, and oracle solaris operating system features in use. Keep in mind that in the default configuration of solaris the files are in a binary. Sommeone know how to configure syslog on solaris, linuxrhel, suse. Only tenable nessus subscribers and securitycenter customers have access to the database checks. Hi everyone, how i can configure a single audit service in the global zone for all zones, on solaris bsm. Migration to an oracle solaris zone on an oracle solaris 11 host. Configuring the audit service tasks oracle solaris.
Audit policies developed by tenable to test aix, hpux, linux, solaris and windows systems for minimum required pci configuration settings. Enterprise agents are available for linux, osx, windows, solaris, microsoft sql server, a variety of browsers, and more. Gary winiger is a security architect and software engineer in the oracle solaris organization. Since the solaris 9 release, the following features have been introduced to solaris auditing. This article will give an overview of what solaris bsm auditing can do and will. Major usability changes to auditing from oracle solaris 10. It begins with the configuration of different attributes of the service according to specific needs and requirements. Preparing for auditing and monitoring solaris quest software. All company, product and service names used in this website are for identification purposes only.
Disa stig and checklist configuration audits bsi audits tenable configuration audits ibm iseries configuration audits hipaa configuration audits. Migration to an oracle solaris zone on an oracle solaris 10 host. Sun solaris basic security mode bsm techlibrary juniper. In the solaris 10 release, the dir and minfree lines are deprecated. Each zone runs its own audit daemon, and has its own audit queue and audit logs. Database configuration checks utilize sql select statements as described in the nessus compliance check documentation. Solaris auditing enhancements in the solaris 10 release. Converting sun solaris bsm audit logs, creating a cron job, configuring a. Cis certified configuration audit policies for windows, solaris, red hat, freebsd and many. How to install and configure sudo in solaris 10 sparc and. Endpoint protection symantec enterprise broadcom community. The zone administrator customizes every audit configuration file.
1556 52 1095 894 1515 899 1413 756 83 1425 1299 472 811 1056 428 1035 973 777 935 596 1488 902 983 1437 1198 1178 771 1140 38 859 1468 1131 1414 899 1107 561 520 873 248 727 96 1462