APPS Blogs

Using Job Role Separation with ASM and EBS 12.2

Steven Chan - Tue, 2017-03-21 10:45

A job role separation configuration of Oracle Database and Oracle Automatic Storage Management (ASM) is a configuration with groups and users to provide separate groups for operating system authentication.

This is now a certified option for E-Business Suite 12.2 environments. The EBS Rapid Install now supports the use of job role separation to manage operating system permissions for ASM, Oracle Grid Infrastructure, and Oracle software installations.

Job Role separation table for ASM in EBS environments

The following guides have been updated to reflect this newly-certified configuration option:

Related Articles


Categories: APPS Blogs

Using Job Role Separation with ASM and EBS 12.2

Steven Chan - Tue, 2017-03-21 10:45

A job role separation configuration of Oracle Database and Oracle Automatic Storage Management (ASM) is a configuration with groups and users to provide separate groups for operating system authentication.

This is now a certified option for E-Business Suite 12.2 environments. The EBS Rapid Install now supports the use of job role separation to manage operating system permissions for ASM, Oracle Grid Infrastructure, and Oracle software installations.

Job Role separation table for ASM in EBS environments

The following guides have been updated to reflect this newly-certified configuration option:

Related Articles

 

Categories: APPS Blogs

EBS Support Implications for Discoverer 11gR1 in June 2017

Steven Chan - Fri, 2017-03-17 10:57

What happens to Discoverer support in June 2017?

The Oracle Lifetime Support Policy: Oracle Fusion Middleware Products document states:

  • Premier Support for Discoverer 11gR1 ended on June 30, 2014. 
  • Extended Support for Discoverer 11gR1 ends on June 30, 2017. 

No new patches for Discoverer 11gR1 or its E-Business Suite (EBS) Discoverer-based content will be created after June 30, 2017.  EBS customers will continue to have access to existing released patches and other published resources.

Which EBS releases are affected?

E-Business Suite 12.1 and 12.2 included workbooks, business areas, and folders built for Discoverer 11gR1.  Both EBS 12.1 and 12.2 are affected by this.

What should EBS users use for analytics now?

This document was published in March 2014:

That Note recommends that Discoverer users migrate to Oracle Business Intelligence Enterprise Edition (OBIEE), Oracle Business Intelligence for Applications (OBIA), or Oracle Endeca Information Discovery.

Are there automated tools for migrating from Discoverer to other Oracle analytics tools?

No, there are no automated tools for migrating Discoverer content to OBIEE, OBIA, or Oracle Endeca Information Discovery.

Can EBS customers request new patches after June 2017?

No, Oracle will not produce new patches or documentation for Discoverer, EBS content for Discoverer, or Discoverer certifications with EBS 12.1 or 12.2 after June 30, 2017. 

Can EBS customers access existing Discoverer-related resources after June 2017?

Yes, EBS customers will still be able to download existing Discoverer patches.  For example, Discoverer 11.1.1.7 was certified in June 2013 and is certified for EBS 12.1 and 12.2.  Customers will continue to be able to download Discoverer 11.1.1.7 and Discoverer-related documentation for EBS environments (Note 1380591.1 for EBS 12.2, Note 1074326.1 for EBS 12.1).

Can EBS customers continue to use Discoverer after June 2017?

Yes, but Oracle's ability to assist with questions will be increasingly-limited as environments with Discoverer are retired.  Customers should minimize changes to their Discoverer-related infrastructure with the goal of keeping Discoverer environments stable: e.g. limiting changes that might affect load, hardware infrastructure, or business processes.

Will Discoverer work with new desktop client updates after June 2017?

This is unknown.  No new certifications for Discoverer will be performed after June 2017.  Desktop client updates such as new JRE releases, new Windows updates, and new browsers may have unpredictable effects on Discoverer.  Oracle will not issue new compatibility patches for these types of issues after June 2017.


Categories: APPS Blogs

EBS Support Implications for Discoverer 11gR1 in June 2017

Steven Chan - Fri, 2017-03-17 10:57

What happens to Discoverer support in June 2017?

The Oracle Lifetime Support Policy: Oracle Fusion Middleware Products document states:

  • Premier Support for Discoverer 11gR1 ended on June 30, 2014. 
  • Extended Support for Discoverer 11gR1 ends on June 30, 2017. 

No new patches for Discoverer 11gR1 or its E-Business Suite (EBS) Discoverer-based content will be created after June 30, 2017.  EBS customers will continue to have access to existing released patches and other published resources.

Which EBS releases are affected?

E-Business Suite 12.1 and 12.2 included workbooks, business areas, and folders built for Discoverer 11gR1.  Both EBS 12.1 and 12.2 are affected by this.

What should EBS users use for analytics now?

This document was published in March 2014:

That Note recommends that Discoverer users migrate to Oracle Business Intelligence Enterprise Edition (OBIEE), Oracle Business Intelligence for Applications (OBIA), or Oracle Endeca Information Discovery.

Are there automated tools for migrating from Discoverer to other Oracle analytics tools?

No, there are no automated tools for migrating Discoverer content to OBIEE, OBIA, or Oracle Endeca Information Discovery.

Can EBS customers request new patches after June 2017?

No, Oracle will not produce new patches or documentation for Discoverer, EBS content for Discoverer, or Discoverer certifications with EBS 12.1 or 12.2 after June 30, 2017. 

Can EBS customers access existing Discoverer-related resources after June 2017?

Yes, EBS customers will still be able to download existing Discoverer patches.  For example, Discoverer 11.1.1.7 was certified in June 2013 and is certified for EBS 12.1 and 12.2.  Customers will continue to be able to download Discoverer 11.1.1.7 and Discoverer-related documentation for EBS environments (Note 1380591.1 for EBS 12.2, Note 1074326.1 for EBS 12.1).

Can EBS customers continue to use Discoverer after June 2017?

Yes, but Oracle's ability to assist with questions will be increasingly-limited as environments with Discoverer are retired.  Customers should minimize changes to their Discoverer-related infrastructure with the goal of keeping Discoverer environments stable: e.g. limiting changes that might affect load, hardware infrastructure, or business processes.

Will Discoverer work with new desktop client updates after June 2017?

This is unknown.  No new certifications for Discoverer will be performed after June 2017.  Desktop client updates such as new JRE releases, new Windows updates, and new browsers may have unpredictable effects on Discoverer.  Oracle will not issue new compatibility patches for these types of issues after June 2017.

 

Categories: APPS Blogs

Integrigy COLLABORATE 17 Sessions - Presentations on Oracle Database, Oracle E-Business Suite, and PeopleSoft Security

Integrigy is presenting nine papers this year at COLLABORATE 17 (https://collaborate.oaug.org/). The COLLABORATE 17 conference is a joint conference for the Oracle Applications User Group (OAUG), Independent Oracle Users Group (IOUG), and Quest International Users Group.

Here is our schedule. If you have questions or would like to meet with us while at COLLABORTE 17, please conact us at info@integrigy.com.

Sunday Apr 02, 2017

1:45 PM - 2:45 PM

Oracle E-Business Suite 12.2 Security Enhancements

https://app.attendcollaborate.com/event/member?item_id=5621519

Banyan E

Speaker: Stephen Kost

1:45 PM - 2:45 PM

How to Control and Secure Your DBAs and Developers in Oracle E- Business Suite

https://app.attendcollaborate.com/event/member?item_id=5740411

South Seas F

Speaker: Michael Miller

Monday Apr 03, 2017

9:45 AM - 10:45 AM

The Thrifty DBA Does Database Security

https://app.attendcollaborate.com/event/member?item_id=5660960

Jasmine D

Speaker: Stephen Kost

1:00 PM - 4:30 PM

Integrigy team available for meetings and discussions Contacts us at info@integrigy.com to arrange

 

 

Tuesday Apr 04, 2017

9:45 AM - 10:45 AM

Solving Application Security Challenges with Database Vault

https://app.attendcollaborate.com/event/member?item_id=5660961

Jasmine D

Speaker: Stephen Kost

1:00 PM - 4:30 PM

Integrigy team available for meetings and discussions Contacts us at info@integrigy.com to arrange

 

 

Wednesday Apr 05, 2017

9:45 AM - 10:45 AM

When You Can't Apply Database Security Patches

https://app.attendcollaborate.com/event/member?item_id=5660962

Jasmine D

Speaker: Stephen Kost

11:00 AM - 12:00 PM

Common Mistakes When Deploying Oracle E-Business Suite to the Internet

https://app.attendcollaborate.com/event/member?item_id=5621520

South Seas B

Speaker: Stephen Kost

1:30 PM - 2:30 PM

Securing Oracle 12c Multitenant Pluggable Databases

https://app.attendcollaborate.com/event/member?item_id=5660950

Palm A

 

Speaker: Michael Miller

2:45 PM - 3:45 PM

How to Control and Secure Your DBAs and Developers in PeopleSoft

https://app.attendcollaborate.com/event/member?item_id=5617942

Ballroom  J

Speaker: Michael Miller

Thursday Apr 06, 2017

8:30 AM - 9:30 AM

Oracle E-Business Suite Mobile and Web Services Security

https://app.attendcollaborate.com/event/member?item_id=5621407

South Seas B

Speaker: Michael Miller

 

You can download a complete listing of Integrigy's sessions at Integrigy COLLABORATE 17 Sessions.

Oracle Database, Oracle E-Business Suite, Oracle PeopleSoft
Categories: APPS Blogs, Security Blogs

PeopleSoft Security

This is a quick summary of Integrigy’s latest research on PeopleSoft. Was sending this to a client and decided it was a good posting:

Guide to PeopleSoft Logging and Auditing

How to Control and Secure PeopleSoft DBAs and Developers

PeopleSoft Database Security

PeopleSoft Database Secure Baseline Configuration

PeopleSoft Security Quick Reference

If you have any questions, please contact us at info@integrigy.com

 

 
 
Oracle PeopleSoft, Whitepaper
Categories: APPS Blogs, Security Blogs

Deploying Oracle E-Business Suite 12.2 REST Web Services

This is the forth posting in a blog series summarizing the new Oracle E-Business Suite 12.2 Mobile and web services functionality and recommendations for securing them.

Physically deploying REST services with 12.2 is straightforward. REST is an architectural style and not a protocol and is best used to support lightweight and “chatty” interfaces such as Mobile applications.  With 12.2, REST Web Application Description Language (WADL) interface definition files are generated within the E-Business Suite's WebLogic server and run through the OAFM Application. The OAFM application created with the installation of the Oracle E-Business Suite.

If you have any questions, please contact us at info@integrigy.com

-Michael Miller, CISSP-ISSMP, CCSP, CCSK

References
 

 

     
     
     
     
     
     
    Web Services, DMZ/External, Oracle E-Business Suite
    Categories: APPS Blogs, Security Blogs

    Webcast: "Secure Configuration for EBS in Oracle Cloud"

    Steven Chan - Thu, 2017-03-16 02:06

    EBS security on cloudOracle
    University has a wealth of free webcasts for Oracle E-Business Suite. 
    If you're looking for an overview of how to secure an EBS environment running in Oracle Cloud, see:

    Elke Phelps, Senior Principal Product Manager, provides an overview of Oracle E-Business Suite secure configuration guidelines and security features available when deploying Oracle E-Business Suite in Oracle Cloud.  Knowledge of Oracle's Cloud Services, including IaaS and PaaS, is assumed. This material was presenterd at Oracle OpenWorld 2016.

     

    Categories: APPS Blogs

    Webcast: "Secure Configuration for EBS in Oracle Cloud"

    Steven Chan - Thu, 2017-03-16 02:06

    EBS security on cloudOracle University has a wealth of free webcasts for Oracle E-Business Suite.  If you're looking for an overview of how to secure an EBS environment running in Oracle Cloud, see:

    Elke Phelps, Senior Principal Product Manager, provides an overview of Oracle E-Business Suite secure configuration guidelines and security features available when deploying Oracle E-Business Suite in Oracle Cloud.  Knowledge of Oracle's Cloud Services, including IaaS and PaaS, is assumed. This material was presenterd at Oracle OpenWorld 2016.

    Categories: APPS Blogs

    Building Custom EBS Mobile Apps with REST

    Steven Chan - Wed, 2017-03-15 02:04

    EBS Approval mobile app screenshotOver 20 EBS mobile apps are available today for E-Business Suite 12.1 and 12.2.  These apps are available for iOS and Android and cover functional areas such as Approvals, Expenses, Timecards, iProcurement, Sales Orders, Inventory, and much more.  These apps are documented here:

    What's New

    Our mobile apps have just gone through a refresh cycle (a.k.a. "Release 6.1") along with updates to all of the server-side libraries.  These updates are transparent to end-users and backwards-compatible with previous mobile app releases (e.g. "Release 6.0"). 

    The latest versions of all of these apps use APIs that are documented in our Oracle Integration Repository.  These APIs are newly-published as REST services.  This means that you can now use these APIs to build your own custom mobile apps for EBS.

    New guidelines for building your own mobile apps for the E-Business Suite are published here:

     

    Categories: APPS Blogs

    Building Custom EBS Mobile Apps with REST

    Steven Chan - Wed, 2017-03-15 02:04

    EBS Approval mobile app screenshotOver 20 EBS mobile apps are available today for E-Business Suite 12.1 and 12.2.  These apps are available for iOS and Android and cover functional areas such as Approvals, Expenses, Timecards, iProcurement, Sales Orders, Inventory, and much more.  These apps are documented here:

    What's New

    Our mobile apps have just gone through a refresh cycle (a.k.a. "Release 6.1") along with updates to all of the server-side libraries.  These updates are transparent to end-users and backwards-compatible with previous mobile app releases (e.g. "Release 6.0"). 

    The latest versions of all of these apps use APIs that are documented in our Oracle Integration Repository.  These APIs are newly-published as REST services.  This means that you can now use these APIs to build your own custom mobile apps for EBS.

    New guidelines for building your own mobile apps for the E-Business Suite are published here:


    Categories: APPS Blogs

    Webcast: "Build, Deploy and Manage Smartphone Apps for EBS"

    Steven Chan - Tue, 2017-03-14 02:05

    Build EBS smartphone appsOracle
    University has a wealth of free webcasts for Oracle E-Business Suite. 
    If you're looking for a primer on how to build your own mobile apps for EBS, see:

    Vijay Shanmugam, Director Product Development, explains the
    technologies and approach used to build Oracle's smartphone applications
    for Oracle E-Business Suite. You will learn how to deploy and manage
    iOS and Android mobile applications from application stores, how to use
    enterprise deployment to distribute controlled versions of the mobile
    applications within your organization and how to use a combination of
    Oracle E-Business Suite Mobile Foundation, Oracle E-Business Suite REST
    services and Oracle Mobile Application Framework (MAF) to develop custom
    smartphone applications for Oracle E-Business Suite to meet your needs.
    This material was presented at Oracle OpenWorld 2016.

     

    Categories: APPS Blogs

    Webcast: "Build, Deploy and Manage Smartphone Apps for EBS"

    Steven Chan - Tue, 2017-03-14 02:05

    Build EBS smartphone appsOracle University has a wealth of free webcasts for Oracle E-Business Suite.  If you're looking for a primer on how to build your own mobile apps for EBS, see:

    Vijay Shanmugam, Director Product Development, explains the technologies and approach used to build Oracle's smartphone applications for Oracle E-Business Suite. You will learn how to deploy and manage iOS and Android mobile applications from application stores, how to use enterprise deployment to distribute controlled versions of the mobile applications within your organization and how to use a combination of Oracle E-Business Suite Mobile Foundation, Oracle E-Business Suite REST services and Oracle Mobile Application Framework (MAF) to develop custom smartphone applications for Oracle E-Business Suite to meet your needs. This material was presented at Oracle OpenWorld 2016.

    Categories: APPS Blogs

    Mary Beth Haglin Porn Videos, teacher: 'My student lover seduced me'

    iAdvise - Tue, 2017-03-14 01:45
    Mary Beth Haglin, from Iowa, turned herself into the police back in July, but now she insists that she was ‘swept off her feet’ by the anonymous 17-year-old male student.

    Speaking to Inside Edition, the substitute teacher said:

    He would come into my classroom, grab a Post-It, write something and stick it to my desk on his way out. One read, ‘I love you so much, my empress’. He would always call me ‘my empress’.

    And Mary Beth fell for his way with words, having sex with the minor ‘almost every day’ at a nearby car park and sending numerous revealing selfies.

    However, the teacher claims that the relationship was more than just sexual – she believes it was love.


    She added:

    I was completely head over heels. We met several times a week, not every time was just to have sex. There were times we would sit and talk. I thought in my mind this was some sort of real relationship. - Plus d'infos sur Mo Ti News - http://motinews.info/news/video-mary-beth-haglin-teacher-my-student-lover-seduced-me

    But their lustful, and massively illegal, romance came to an abrupt end when the pair were spotted by another student and Haglin was fired and charged with sexual exploitation.

    She then quickly handed herself into police and is set to be tried on November 14.

    Speaking about her trial, she said:

    I want to go back and smack myself and ask: ‘What were you thinking Mary Beth?’

    If convicted, Mary Beth will face up to two-years in prison and will become a registered sex offender.  Clik Here to watch Mary Beth Haglin Porn Videos
    Categories: APPS Blogs

    Firefox ESR 52 Certified with EBS 12.1 and 12.2

    Steven Chan - Mon, 2017-03-13 12:04

    Firefox ESR logo

    Mozilla Firefox 52 Extended Support Release (ESR) is certified as a Windows-based client browser for Oracle E-Business Suite 12.1 and 12.2.

    What is Mozilla Firefox ESR?

    Mozilla offers an Extended Support Release based on an official release of Firefox for organizations that are unable to mass-deploy new consumer-oriented versions of Firefox every six weeks.  From the Mozilla ESR FAQ:

    What does the Mozilla Firefox ESR life cycle look like?

    Releases will be maintained for approximately one year, with point releases containing security updates coinciding with regular Firefox releases. The ESR will also have a two cycle (12 week) overlap between the time of a new release and the end-of-life of the previous release to permit testing and certification prior to deploying a new version.

    Maintenance of each ESR, through point releases, is limited to high-risk/high-impact security vulnerabilities and in rare cases may also include off-schedule releases that address live security vulnerabilities. Backports of any functional enhancements and/or stability fixes are not in scope.

    At the end of the support period for an ESR version:

    • the release will reach its end-of-life
    • no further updates will be offered for that version
    • an update to the next version will be offered through the application update service

    E-Business Suite to be certified with Firefox Extended Support Releases Only

    New personal versions of Firefox on the Rapid Release channel are released roughly every six weeks.  It is impractical for us to certify these new personal Rapid Release versions of Firefox with the Oracle E-Business Suite because a given Firefox release is generally obsolete by the time we complete the certification.

    From Firefox 10 and onwards, Oracle E-Business Suite is certified only with selected Firefox Extended Support Release versions. Oracle has no current plans to certify new Firefox personal releases on the Rapid Release channel with the E-Business Suite.

    Plug-in Support removed in Firefox Rapid Release 52

    Mozilla has removed plug-in support in Firefox Rapid Release 52.  This means that the Rapid Release version of Firefox cannot run Forms-based content in EBS. 

    Firefox Extended Support Release continues to offer plug-in support.  End-users who need to use Forms-based content in EBS must run the Firefox Extended Support Release. 

    Will EBS offer an alternative to plug-ins?

    Yes. We are working on an update to EBS that allows Forms-based content to run in browsers that do not have plug-in support.  See:

    When will the new Java Web Start alternative be released?

    Oracle's Revenue Recognition rules prohibit us from discussing certification and release dates, but you're welcome to monitor or subscribe to this blog. I'll post updates here as soon as soon as they're available.   

    EBS patching policy for Firefox compatibility issues

    Mozilla stresses their goal of ensuring that Firefox personal versions will continue to offer the same level of application compatibility as Firefox Extended Support Releases. 

    Oracle E-Business Suite Development will issue new E-Business Suite patches or workarounds that can be reproduced with Firefox Extended Support Releases.  If you report compatibility issues with Firefox personal releases that cannot be reproduced with Firefox Extended Support Releases, your options are:

    1. Deploy a certified Firefox Extended Support Release version instead of the Firefox personal version
    2. Report the incompatibility between Firefox ESR and Firefox personal to Mozilla
    3. Use Internet Explorer (on Windows) or Safari (on Mac OS X) until Mozilla resolves the issue
    EBS Compatibility with Firefox ESR security updates

    Mozilla may release new updates to Firefox ESR versions to address high-risk/high-impact security issues.  These updates are considered to be certified with the E-Business Suite on the day that they're released.  You do not need to wait for a certification from Oracle before deploying these new Firefox ESR security updates.

    Certified desktop operating systems
    • Windows 10 (32-bit and 64-bit)
    • Windows 8.1 (32-bit and 64-bit)
    • Windows 7 SP1 (32-bit and 64-bit)

    References

    Related Articles

    Categories: APPS Blogs

    Webcast: "Build, Deploy and Manage Smartphone Apps for EBS"

    Steven Chan - Mon, 2017-03-13 02:05

    Build EBS smartphone appsOracle University has a wealth of free webcasts for Oracle E-Business Suite.  If you're looking for a primer on how to build your own mobile apps for EBS, see:

    Vijay Shanmugam, Director Product Development, explains the technologies and approach used to build Oracle's smartphone applications for Oracle E-Business Suite. You will learn how to deploy and manage iOS and Android mobile applications from application stores, how to use enterprise deployment to distribute controlled versions of the mobile applications within your organization and how to use a combination of Oracle E-Business Suite Mobile Foundation, Oracle E-Business Suite REST services and Oracle Mobile Application Framework (MAF) to develop custom smartphone applications for Oracle E-Business Suite to meet your needs. This material was presented at Oracle OpenWorld 2016.

    Categories: APPS Blogs

    TFA-00103 – TFA is not yet secured to run all commands

    Online Apps DBA - Sun, 2017-03-12 03:56

    For versions of TFA greater than 12.1.2.4.1 the way TFA secures it’s communication among nodes has changed. This new TFA communication change has to be completed across ALL nodes of the TFA configuration in order to avoid communication problems. TFA will be upgraded on each node locally as part of the application of the PSU. […]

    The post TFA-00103 – TFA is not yet secured to run all commands appeared first on Oracle Trainings for Apps & Fusion DBA.

    Categories: APPS Blogs

    Deploying Oracle E-Business Suite Web Services

    This is the third posting in a blog series summarizing the new Oracle E-Business Suite 12.2 Mobile and web services functionality and recommendations for securing them.

    Web services are physically deployed differently depending on whether they are defined using Representational State Transfer (REST) or Simple Object Access Protocol (SOAP).  Logically, however, both REST and SOAP web services are deployed from within the Integrated SOA Gateway (ISG). Refer to the E-Business Suite’s documentation for details, but from within the Integrated SOA Gateway, users can deploy web services by locating the particular web service and then clicking on the "Deploy" button.

    If you have any questions, please contact us at info@integrigy.com

    -Michael Miller, CISSP-ISSMP, CCSP, CCSK

    References
     
     
     
     
     
     
     
     
     
     
     
     
     
     
    Web Services, DMZ/External, Oracle E-Business Suite
    Categories: APPS Blogs, Security Blogs

    Reminder: Upgrade Oracle Internet Directory 11.1.1.7 to 11.1.1.9

    Steven Chan - Fri, 2017-03-10 02:05

    Oracle Fusion Middleware products get new Patch Set updates.  When a new Patch Set has been released, a 12 month Grace Period for the previous Patch Set begins.  Once that Grace Period ends, no new patches for the previous Patch Set will be released.

    For more details, see:

    Oracle Internet Directory is part of a suite of products called "Oracle Identity and Access Management" (IAM).  OID 11.1.1.7 was released in April 2013 .  OID 11.1.1.9 was released in May 2015, which means that the Grace Period for OID 11.1.1.7 ended after May 2016. 

    All E-Business Suite users running OID 11.1.1.7 should upgrade to OID 11.1.1.9 to remain under Error Correction Support. OID 11.1.1.x is covered by Premier Support to December 2018, and covered by Extended Support to December 2021.

    Related Articles

    Categories: APPS Blogs

    Ten Signs Your Boss Sees You As A Threat

    OracleApps Epicenter - Thu, 2017-03-09 10:17
    Every person has a gift, or an ability that sets them apart from the crowd. Good managers recognize this and try to use it to their advantage. Great managers try to surround themselves with talent...they recognize that with that much talent in their corner, they can't fail. Bad managers feel threatened and try to discredit […]
    Categories: APPS Blogs

    Pages

    Subscribe to Oracle FAQ aggregator - APPS Blogs