Simplify user management and avoid common security risks with EUS.
As the number of databases in an organization increases, so do the number of database identities. These identities, while necessary, pose increased security risk if they are not managed properly.
Some organizations manage individual user database accounts manually. They rely on database administrators (DBAs) for provisioning and removing accounts at each database, managing account access privileges and security settings individually.
Other organizations may try to leverage their identity management system for database account management; however, this approach doesn’t scale well in an environment with many databases.
Fortunately for Oracle Database customers, there is a solution.
Simplify Management, Segregate Duties, Increase Security
Oracle Enterprise User Security (EUS) is a feature of Oracle Database Enterprise Edition that allows database authentication and privilege management to be centralized in a directory service, such as Microsoft Active Directory (AD) or one of the Oracle Directory Services like Oracle Unified Directory (OUD).
EUS can free DBAs from repetitive tasks like adding new users, granting them roles or privileges, password resets, and terminations. Once the DBA sets up the EUS framework, many of those tasks are automatically brought under existing enterprise controls. The remaining tasks can be delegated to security or AD administrators operating on directory entries instead of touching each database.
Security is improved by reducing points of control and applying consistency. Database account management can integrate with the organization’s existing Identity and Access Governance framework because the directory presents one resource to be managed rather than hundreds. Advanced replication features mean the directory can satisfy customer requirements for performance, availability and business continuity.