Update DBAT OS sample for Oracle DB 19c deployments

Author: mgere-oracle

security/identity-and-access-management/oracle-access-governance/dbat-os-accounts-sample/README.md

@@ -6,7 +6,7 @@ At the time of writing, this capability is not offered natively in OAG.
 
 The described integration and data can be used for all supported user/account lifecycle operations in OAG, including use in access certification. Note that this simulates a connected system, therefore changes to OS level user access will be reflected in the targeted database tables.
 
-Review Date: 10.02.2025
+Review Date: 01.08.2025
 
 # When to use this asset?
 
@@ -29,11 +29,20 @@ Please ensure the requirements listed above have been satisfied.
 
 1. Connect to the database as dba (with sysdba role) and create a schema user for the purposes of the integration, by running:
 
+**Note:** Please adjust the provided sample sizes and naming as needed.
+
 ```
+CREATE TABLESPACE oagts
+  DATAFILE 'oagts.dat'
+    SIZE 100M
+    REUSE
+    AUTOEXTEND ON NEXT 100M MAXSIZE 500M;
+
 CREATE USER OAG IDENTIFIED BY <your_secure_password>
-DEFAULT TABLESPACE oagts
-TEMPORARY TABLESPACE temp QUOTA UNLIMITED ON oagts;
+  DEFAULT TABLESPACE oagts
+  TEMPORARY TABLESPACE temp QUOTA UNLIMITED ON oagts;
 
+GRANT CREATE SESSION TO OAG;
 GRANT SELECT on dba_role_privs TO OAG;
 GRANT SELECT on dba_sys_privs TO OAG;
 GRANT SELECT on dba_ts_quotas TO OAG;

security/identity-and-access-management/oracle-access-governance/dbat-os-accounts-sample/files/OS_Account.sql

@@ -73,50 +73,50 @@ CREATE TABLE OS_ACCOUNT_HOST
          Included names and dates are randomly generated and used fictitiously.
          Any resemblance to locales or persons, living or dead, is entirely coincidental. */
 
-INSERT INTO OS_COUNTRY (COUNTRYCODE,COUNTRYNAME) values ('DE', 'Germany');
-INSERT INTO OS_COUNTRY (COUNTRYCODE,COUNTRYNAME) values ('AT', 'Austria');
-INSERT INTO OS_COUNTRY (COUNTRYCODE,COUNTRYNAME) values ('CH', 'Switzerland');
+INSERT INTO OS_COUNTRY (COUNTRYCODE,COUNTRYNAME) VALUES ('DE', 'Germany');
+INSERT INTO OS_COUNTRY (COUNTRYCODE,COUNTRYNAME) VALUES ('AT', 'Austria');
+INSERT INTO OS_COUNTRY (COUNTRYCODE,COUNTRYNAME) VALUES ('CH', 'Switzerland');
 
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('BFRANK','BFRANK','Bernd','Frank',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('DSTAUSS','DSTAUSS','Dirk','Stauss',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','AT');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('DJONES','DJONES','Dora','Jones',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('EBRANDT','EBRANDT','Ewald','Brandt',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','CH');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('GKLEIN','GKLEIN','Gerrit','Klein',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('GVOGT','GVOGT','Gitta','Vogt',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','CH');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('HSCHUMACHER','HSCHUMACHER','Helene','Schumacher',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('LSCHULTE','LSCHULTE','Lothur','Schulte',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','AT');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('LDERICHS','LDERICHS','Lutz','Derichs',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','AT');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('RPROTZ','RPROTZ','Rosemarie','Protz',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
-INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) values ('WSCHUBERT','WSCHUBERT','Wolf','Schubert',,'[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('BFRANK','BFRANK','Bernd','Frank','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('DSTAUSS','DSTAUSS','Dirk','Stauss','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','AT');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('DJONES','DJONES','Dora','Jones','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('EBRANDT','EBRANDT','Ewald','Brandt','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','CH');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('GKLEIN','GKLEIN','Gerrit','Klein','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('GVOGT','GVOGT','Gitta','Vogt','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','CH');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('HSCHUMACHER','HSCHUMACHER','Helene','Schumacher','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('LSCHULTE','LSCHULTE','Lothur','Schulte','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','AT');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('LDERICHS','LDERICHS','Lutz','Derichs','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','AT');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('RPROTZ','RPROTZ','Rosemarie','Protz','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
+INSERT INTO OS_ACCOUNT (USERID,USERNAME,FIRSTNAME,LASTNAME,PASSWORD,EMAIL,PROVISIONDATE,STATUS,COUNTRYCODE) VALUES ('WSCHUBERT','WSCHUBERT','Wolf','Schubert','','[email protected]',to_date('24-OCT-24','DD-MON-RR'),'ACTIVE','DE');
 
-INSERT INTO OS_HOST (HOSTID,HOSTNAME) values ('host001','unixhost1');
-INSERT INTO OS_HOST (HOSTID,HOSTNAME) values ('host002','unixhost2');
-INSERT INTO OS_HOST (HOSTID,HOSTNAME) values ('host003','linuxhost1');
-INSERT INTO OS_HOST (HOSTID,HOSTNAME) values ('host004','linuxhost2');
+INSERT INTO OS_HOST (HOSTID,HOSTNAME) VALUES ('host001','unixhost1');
+INSERT INTO OS_HOST (HOSTID,HOSTNAME) VALUES ('host002','unixhost2');
+INSERT INTO OS_HOST (HOSTID,HOSTNAME) VALUES ('host003','linuxhost1');
+INSERT INTO OS_HOST (HOSTID,HOSTNAME) VALUES ('host004','linuxhost2');
 
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('BFRANK','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('BFRANK','host002');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('BFRANK','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('DJONES','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('DJONES','host002');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('DJONES','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('DSTAUSS','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('DSTAUSS','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('EBRANDT','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('EBRANDT','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('GKLEIN','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('GKLEIN','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('GKLEIN','host004');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('GVOGT','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('GVOGT','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('HSCHUMACHER','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('HSCHUMACHER','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('LDERICHS','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('LDERICHS','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('LSCHULTE','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('LSCHULTE','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('RPROTZ','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('RPROTZ','host003');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('RPROTZ','host004');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('WSCHUBERT','host001');
-INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) values ('WSCHUBERT','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('BFRANK','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('BFRANK','host002');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('BFRANK','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('DJONES','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('DJONES','host002');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('DJONES','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('DSTAUSS','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('DSTAUSS','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('EBRANDT','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('EBRANDT','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('GKLEIN','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('GKLEIN','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('GKLEIN','host004');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('GVOGT','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('GVOGT','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('HSCHUMACHER','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('HSCHUMACHER','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('LDERICHS','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('LDERICHS','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('LSCHULTE','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('LSCHULTE','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('RPROTZ','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('RPROTZ','host003');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('RPROTZ','host004');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('WSCHUBERT','host001');
+INSERT INTO OS_ACCOUNT_HOST (USERID,HOSTID) VALUES ('WSCHUBERT','host003');