Analysis of the oracle solaris configuration, including networking, storage, and oracle solaris operating system features in use. Endpoint protection symantec enterprise broadcom community. Hi all, any one has, sun solaris audit program which covers everything one need to check as a security auditor. This section provides an example of how you configure and implement oracle solaris auditing. Since the solaris 9 release, the following features have been introduced to solaris auditing. Migration to an oracle solaris zone on an oracle solaris 11 host. How to install and configure sudo in solaris 10 sparc and. Major usability changes to auditing from oracle solaris 10. Preparing for auditing and monitoring solaris quest software.
Configuring audit logs task map the following task map points to the procedures for configuring audit logs for the various plugins. Only tenable nessus subscribers and securitycenter customers have access to the database checks. Migration to an oracle solaris zone on an oracle solaris 10 host. Solaris auditing enhancements in the solaris 10 release. However, the recommended practice is to customize your audit configuration as much as possible before you start the audit service.
This article will give an overview of what solaris bsm auditing can do and will. Each zone runs its own audit daemon, and has its own audit queue and audit logs. Sommeone know how to configure syslog on solaris, linuxrhel, suse. Keep in mind that in the default configuration of solaris the files are in a binary. Cis certified configuration audit policies for windows, solaris, red hat, freebsd and many. Database configuration checks utilize sql select statements as described in the nessus compliance check documentation. The zone administrator customizes every audit configuration file. Sun solaris basic security mode bsm techlibrary juniper. Converting sun solaris bsm audit logs, creating a cron job, configuring a. Hi everyone, how i can configure a single audit service in the global zone for all zones, on solaris bsm.
If you have implemented zones, you can choose to audit all zones from the global zone. In the solaris 10 release, the dir and minfree lines are deprecated. This article describes the default configuration and major differences between oracle solaris 10 and oracle solaris 11 configuration. It begins with the configuration of different attributes of the service according to specific needs and requirements. Gary winiger is a security architect and software engineer in the oracle solaris organization. All product names, logos, and brands are property of their respective owners. Oracle solaris is delivered preconfigured for basic auditing. Audit policies developed by tenable to test aix, hpux, linux, solaris and windows systems for minimum required pci configuration settings. It also provides an audit trail of the commands and their arguments. Disa stig solaris 10 x86 v1r25 audit last updated april 17, 2020 1.
All company, product and service names used in this website are for identification purposes only. This book is for anyone who is responsible for administering the security requirements for one or more systems that run the oracle solaris operating system. Enabling basic security mode in solaris 10, enabling basic security mode in solaris. Some sites may wish to have custom audit configuration. Enabling and using auditing oracle vm server for sparc 2. It also discusses some ways a site may wish to customize a configuration and gives an example interpretation of a simple audit trail. You can enable and disable the auditing feature based on the version of the oracle solaris os that runs on your system, as follows. Snare is a collection of software tools that collect audit log data from a variety of operating systems and applications to facilitate centralised log analysis. Enterprise agents are available for linux, osx, windows, solaris, microsoft sql server, a variety of browsers, and more.
781 877 26 1164 523 1334 174 99 85 78 605 1048 1445 451 1125 1075 1492 867 1397 1253 497 891 803 597 532 19 408 1211 229 1309 795 731 653