ERP 世新大學 ERP 實驗室 Oracle ERP Application Security 電算中心陳育亮資訊管理學系莫明鳳.

Slides:

Advertisements

Similar presentations

Home This training presentation is designed to introduce the Residency Management Suite to new users. This presentation covers the following topics: Login.

Advertisements

Holiday Calendar Menu for navigation This is School Management System’s home screen. This application will automate School or College. It contains a Menu.

Tutorial EBSCOadmin User Groups support.ebsco.com.

Oracle9i Database Administrator: Implementation and Administration 1 Chapter 12 System and Object Privileges.

Chapter 9 Auditing Database Activities

CSCI 150 Database Applications Chapter 1 – Getting Started.

New Student Orientation Registration System Stephen Nakamura EE496 Final Presentation Fall 2008.

3 Copyright © 2004, Oracle. All rights reserved. Working in the Forms Developer Environment.

Compe 341 Oracle Installation Procedure. Oracle From Click.

Advanced Databases Basic Database Administration Guide to Oracle 10g 1.

EmpowHR EmpowHR Security Overview. 2 Application Security Administration Permission List Roles User Profiles Row level security Distributed Security Administration.

SiS Technical Training Development Track Technical Training(s) Day 1 – Day 2.

South Dakota Library Network MetaLib Management Basics IP Ranges / Proxy Servers South Dakota Library Network 1200 University, Unit 9672 Spearfish, SD.

Login Screen This is the Sign In page for the Dashboard Enter Id and Password to sign In New User Registration.

Chapter 9 Collecting Data with Forms. A form on a web page consists of form objects such as text boxes or radio buttons into which users type information.

1 System for Administration, Training, and Educational Resources for NASA Managing Access.

Session 5: Working with MySQL iNET Academy Open Source Web Development.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Classroom User Training June 29, 2005 Presented by:

Login Screen This is the Sign In page for the Dashboard New User Registration Enter Id and Password to sign In.

PHP Programming with MySQL Slide 8-1 CHAPTER 8 Working with Databases and MySQL.

Application Object Library (AOL)

2013.  Modify QuickBooks Preferences  Customize QuickBooks Menus and Windows  Customize the Icon Bar and Display Settings  Use the Item List and Other.

AQS Web Quick Reference Guide Changing Raw Data Values Using Maintenance 1. From Main Menu, click Maintenance, Sample Values, Raw Data 2. Enter monitor.

By Lecturer / Aisha Dawood 1.  Administering Users  Create and manage database user accounts.  Create and manage roles.  Grant and revoke privileges.

First Screen : First window form will always remain open, for the user to select menu options. 1.

9 Copyright © 2005, Oracle. All rights reserved. Administering User Security.

Creating a Web Site to Gather Data and Conduct Research.

Copyright © 2007, Oracle. All rights reserved. Managing Concurrent Requests.

Quick Start Guide: Administrator Basics Learn about: 1.Adding users to the LOAMS system 2.How to modify or delete existing users 3.How to reset passwords.

DIT314 ~ Client Operating System & Administration CHAPTER 5 MANAGING USER ACCOUNTS AND GROUPS Prepared By : Suraya Alias.

IS 221: DATABASE ADMINISTRATION Lecture 6:Create Users & Manage Users. Information Systems Department 1.

Unraveling the Mysteries in the System Administrator Responsibility NCOAUG Training Day February 22, 2008 Judy Vales.

Table of Contents GO TX Overview System Masters System Users System Instruments System Risk.

7 Copyright © 2004, Oracle. All rights reserved. Administering Users.

Discovering Computers Fundamentals Fifth Edition Chapter 9 Database Management.

3 Copyright © 2004, Oracle. All rights reserved. Working in the Forms Developer Environment.

0 eCPIC Admin Training: Automating User Account Management These training materials are owned by the Federal Government. They can be used or modified only.

Roles & privileges privilege A user privilege is a right to execute a particular type of SQL statement, or a right to access another user's object. The.

CHAPTER Creating and Managing Users and Groups. Chapter Objectives Explain the use of Local Users and Groups Tool in the Systems Tools Option to create.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 9 Auditing Database Activities.

3 Copyright © 2004, Oracle. All rights reserved. Working in the Forms Developer Environment.

Module 6: Data Protection. Overview What does Data Protection include? Protecting data from unauthorized users and authorized users who are trying to.

SANSUEB SOFTWARE PRESENTS SkyTextMsg – Online Texting for your Business.

9 Copyright © 2009, Oracle. All rights reserved. Deploying and Reporting on ETL Jobs.

Information Management System “Institutions Module" Information Management System “Institutions Module" The System management module is an integrated part.

System Modules Overview

PaymentNet: Approvers Procurement Services Laurie Krauel.

Oracle 11g: SQL Chapter 7 User Creation and Management.

7 Copyright © 2007, Oracle. All rights reserved. Administering User Security.

Module 6: Administering Reporting Services. Overview Server Administration Performance and Reliability Monitoring Database Administration Security Administration.

1 Copyright © 2009, Oracle. All rights reserved. Controlling User Access.

Oracle eBusiness Financials R12 Oracle Receivables Functional Overview TCS Oracle Practice.

FHA Training Module 1 This document reflects current policy related to this topic. Its content is approved for use in all external and internal FHA-related.

 CONACT UC:  Magnific training   

SAP R/3 User Administration1. 2 User administration in a productive environment is an ongoing process of creating, deleting, changing, and monitoring.

1 A Look at the Application Authorized users can access Communicator! NXT from any Internet-capable computer via the Web.

17 Copyright © 2006, Oracle. All rights reserved. Information Publisher.

1 Copyright © 2005, Oracle. All rights reserved. Oracle Database Administration: Overview.

2 Copyright © 2008, Oracle. All rights reserved. Building the Physical Layer of a Repository.

19 Copyright © 2008, Oracle. All rights reserved. Security.

Microsoft SQL Server 2014 for Oracle DBAs Module 8

Oracle structures on database applications development

CollegeSource Security Application &

Working in the Forms Developer Environment

TOPSpro Special Topics

ERO Portal Overview & CFR Tool Training

This is the Sign In page for the Dashboard

SOP of System Security Settings

CFR Enhancement Session

Presentation transcript:

ERP 世新大學 ERP 實驗室 Oracle ERP Application Security 電算中心陳育亮資訊管理學系莫明鳳

ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources

ERP 世新大學 ERP 實驗室 Agenda Managing Application Security –Responsibility Definition Component –Create User account Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources

ERP 世新大學 ERP 實驗室 Responsibility Definition Responsibility –A collection of authorizations. user Oracle application responsibility Windows Reports

ERP 世新大學 ERP 實驗室

Agenda Managing Application Security –Responsibility Definition Component –Create User account Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources

ERP 世新大學 ERP 實驗室 Responsibility Component Data group Request security group menu exclusions

ERP 世新大學 ERP 實驗室 Data Group Definition Data Group –A collection of pairings of an application with an Oracle ID. –Specify the oracle application database accounts to which a responsibility’s forms and concurrent programs connect.

ERP 世新大學 ERP 實驗室 Data Group Responsibility xyz Oracle IDCUS Oracle IDAR Oracle IDAP Oracle IDGL Data group Form Program Server Database Table

ERP 世新大學 ERP 實驗室

Responsibility Component Data group Request security group menu exclusions

ERP 世新大學 ERP 實驗室 Menu & Exclusions Definition Menu –The forms that a responsibility can display and the functions it can access. Exclusions –Modify the responsibility’s access to the forms and functions specified by a menu.

ERP 世新大學 ERP 實驗室 Menu Menu Level 1 Function-A Menu Level 2 Function-B Function-C Menu Level 3 Function-A Function-D

ERP 世新大學 ERP 實驗室 Exclusion and Final Menu Menu Level 1 Function-A Menu Level 2 Function-B Function-C Menu Level 3 Function-A Function-A Function-D Exclude function Exclude Menu Menu Level 1 Menu Level 2 Function-B Function-C Function-D

ERP 世新大學 ERP 實驗室

Responsibility Component Data group Request security group menu exclusions

ERP 世新大學 ERP 實驗室 Request Security Group Definition Request Security Group –A collection of reports and other concurrent programs. responsibility –Request group lists the concurrent programs that a responsibility can run. –Request group is assigned to a responsibility, it’s refered to as a request security group.

ERP 世新大學 ERP 實驗室

Responsibility Component Data group Request security group menu exclusions

ERP 世新大學 ERP 實驗室 Using Responsibility Using predefined responsibility Define application user Using custom responsibility Define or modify responsibility Exclude functions and menus Define applications user Define or modify data group Define or modify menu Define or modify request group

ERP 世新大學 ERP 實驗室 Agenda Managing Application Security –Responsibility Definition Component –Create User account Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources Applications DBA Duties

ERP 世新大學 ERP 實驗室 User and Responsibility user Oracle application responsibility Windows Reports

ERP 世新大學 ERP 實驗室 Create User Account Enter user name and password Require password change limit access attempts Enter user’s start and end dates Assign one or more responsibilities

ERP 世新大學 ERP 實驗室

Practice 1 & 2 Query Responsibility “System Administrator” and all it’s components. Create a User Account named “your username01” by assigning Responsibility “System Administrator”.

ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports –Request –Request Group –Request Set Administering Concurrent Managers Auditing System Resources Applications DBA Duties

ERP 世新大學 ERP 實驗室 Request Overview Request table Run program … Run program abc Run program … User submits request to run program abc Concurrent manager Concurrent manager starts program abc

ERP 世新大學 ERP 實驗室 Submit Request Flow Submit Request Enter Information Click Submit Record RequestID Enter Parameters Define Submission Schedule Completion Options Optional May be required Optional

ERP 世新大學 ERP 實驗室

Agenda Managing Application Security Managing Concurrent Programs and Reports –Request –Request Group –Request Set Administering Concurrent Managers Auditing System Resources Applications DBA Duties

ERP 世新大學 ERP 實驗室 Request Group A collection of reports and other concurrent programs within a responsibility. One of responsibility’s components. Responsibility level. Include –Application –Program –Set

ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports –Request –Request Group –Request Set Administering Concurrent Managers Auditing System Resources

ERP 世新大學 ERP 實驗室 Request Set A collection of reports and other concurrent programs that user group together themselves. User level. Include –Stage A component of a request set used to group requests within the set.

ERP 世新大學 ERP 實驗室 Request Set Stages Stage 3 Request 4 Request 5 Stage 1 Request Set Request 1 Request 2 Stage 2 Request 3

ERP 世新大學 ERP 實驗室 Defining a Request Set Enter Request Set Names Define Stages Link Stages Save Enter Requests for Stage Enter Request Parameter

ERP 世新大學 ERP 實驗室

Request Set Privileges PrivilegeCreateEdit Sets Contain OwnCreatedSetsChangeOwners UserYesOwnRequest Group’s Reports YesNo SysAdmYesAllAny ReportsNoYes

ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers –Concurrent Manager –Transaction Manager –Conflict Domain Auditing System Resources

ERP 世新大學 ERP 實驗室 Request Overview Request table Run program … Run program abc Run program … User submits request to run program abc Concurrent manager Concurrent manager starts program abc

ERP 世新大學 ERP 實驗室 Concurrent Manager Concurrent Manager Specialization RulesWork Shifts Target Processes Program A Program B

ERP 世新大學 ERP 實驗室 Work Shifts & Priorities Priority Work Shift Definition Example 1 Specific date & range of times April 15,2001 8:00am~5:00PM 2 Specific date but no range of times April 15, Range of days & range of times Mon~Fri 8:00am~5:00pm 4 Range of days but no range of times Mon~Fri 5 Range of times but no date and no range of days 8:00am~5:00pm 6 Standard work shift: no dates,days, or time defined 24 hrs a day 365 days a year

ERP 世新大學 ERP 實驗室 Specialization Rule Action Action Type ApplicationName Name Include Exclude Combined Rule Oracle ID Program Request Type User Application N/A ◎ Specialization Rule:for a particular manager ◎ Combined Rule:generally for multiple managers

ERP 世新大學 ERP 實驗室

Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers –Concurrent Manager –Transaction Manager –Conflict Domain Auditing System Resources

ERP 世新大學 ERP 實驗室 Transaction Manager Transaction managers handle synchronous requests. Each transaction manager is associated with a particular data group.

ERP 世新大學 ERP 實驗室

Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers –Concurrent Manager –Transaction Manager –Conflict Domain Auditing System Resources

ERP 世新大學 ERP 實驗室 Conflicts Domains Logical DataBase Logical DataBase Program A Program B Program A Program B Domain 1Domain 2

ERP 世新大學 ERP 實驗室 Processing Conflict Domain Hierarchy –A program parameter –The system profile option “Concurrent:Conflicts Domains” –Standard Default Domain

ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources –Sign On Audit –AuditTrail

ERP 世新大學 ERP 實驗室 Types of Auditing Oracle Application Auditing user activity(Sign on Audit) Auditing database row changes(AuditTrail) Database table Audit table

ERP 世新大學 ERP 實驗室 Auditing User Activity Sign On Audit System Profile Option Sign On Audit Report Monitor User Form

ERP 世新大學 ERP 實驗室 System Profile – Audit Level None User Responsibility Form System Profile display by Application Responsibility User Site Audit Level

ERP 世新大學 ERP 實驗室 Sign On Audit Reports Sign On Audit Forms Report Sign On Audit Users Report Sign On Audit Responsibilities Sign On Audit Concurrent Requests Report Sign On Audit Unsuccessful Login Report

ERP 世新大學 ERP 實驗室 Online Monitor Use this window to monitor what your application users are currently doing.

ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources –Sign On Audit –AuditTrail

ERP 世新大學 ERP 實驗室 AuditTrail Auditing Database Changes Database table Audit table Insert Update Delete

ERP 世新大學 ERP 實驗室 Steps of AuditTrail Identify tables and columns to be audited. Create audit group. Specify columns for auditing. Identify Oracle IDs to be audited. Run AuditTrail Update Tables Report.

ERP 世新大學 ERP 實驗室 Create Audit Group

ERP 世新大學 ERP 實驗室 Specify Column for Auditing

ERP 世新大學 ERP 實驗室 Run AuditTrail Update Tables Report

ERP 世新大學 ERP 實驗室 Practice 3 & 4 Concurrent Manager Admin Window to query concurrent managers status. Auditing –Open your Sign-On:Audit Level to Form Level by Displaying User. –Run Sign On Audit User Report. (Request) –Monitor online user status.