EasyManua.ls Logo

Oracle Secure Backup User Manual

Default Icon
174 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #128 background imageLoading...
Page #128 background image
Configuring Security for the Administrative Domain
6-18 Oracle Secure Backup Installation and Configuration Guide
7.
Copy the signed identity certificate to a temporary location on the file system.
8. Enter the following command at the obcm prompt, where signed_
certificate_file is the filename of the certificate:
import --file signed_certificate_file
Because only one Oracle Secure Backup wallet exists on the host, you are not
required to specify the --host option. For example, the following example
imports the certificate from /tmp/brhost2_cert.f:
import --file /tmp/brhost2_cert.f
The obcm utility issues an error message if the certificate being imported does not
correspond to the certificate request in the wallet.
9. Remove the certificate file from its temporary location on the operating system.
For example:
rm /tmp/brhost2_cert.f
The obcm utility checks that the public key associated with the certificate for the host
corresponds to the private key stored in the wallet with the certificate request. If the
keys match, then the host is a member of the domain. If the keys do not match, then an
attacker probably attempted to pass off their own host as the host during processing of
the mkhost command. You can run the mkhost command again after the rogue host
has been eliminated from the network.
Setting the Size for Public and Private Keys
As a general rule, the larger the sizes of the public key and the private key, the more
secure they are. On the other hand, the smaller the key, the better the performance.
The default key size for all hosts in the domain is 1024 bits. If you accept this default,
then you are not required to perform any additional configuration.
Oracle Secure Backup enables you to set the key to any of the following bit values,
which are listed in descending order of security:
4096
3072
2048
1024
768
512
This section contains these topics:
Setting the Key Size in obparameters
Setting the Key Size in the certkeysize Security Policy
Setting the Key Size in mkhost
Setting the Key Size in obparameters
The obparameters file specifies the default key size in the security policy, which if
used is set up during the installation process. The key size for all hosts in the domain
defaults to this value.

Table of Contents

Question and Answer IconNeed help?

Do you have a question about the Oracle Secure Backup and is the answer not in the manual?

Oracle Secure Backup Specifications

General IconGeneral
CompressionYes
Tape Library SupportYes
Web InterfaceYes
Command Line InterfaceYes
SchedulingYes
ReportingYes
Role-Based Access ControlYes
NDMP SupportYes
Virtual Tape Library SupportYes
Operating Systems SupportedLinux, Windows, Solaris, AIX, HP-UX
Backup MethodsFull, Incremental, Differential
Media SupportTape, Disk
Database SupportOracle Database
EncryptionAES 256-bit
Centralized ManagementYes
Cloud IntegrationOracle Cloud

Summary

1 Introduction to Oracle Secure Backup

What Is Oracle Secure Backup?

Provides an overview of Oracle Secure Backup's capabilities and benefits.

Oracle Secure Backup Concepts

Explains fundamental concepts like administrative domains, hosts, and roles.

Oracle Secure Backup Interfaces

System Requirements for Oracle Secure Backup

Details the disk space and other system requirements for installation.

Installation and Configuration Overview

2 Installing Oracle Secure Backup on Linux or UNIX

Prerequisites for Installing Oracle Secure Backup on Linux and UNIX

Lists the necessary requirements and checks before installing on Linux/UNIX.

Loading Oracle Secure Backup Software on Linux or UNIX Using setup Script

Configuring Installation Parameters in the obparameters File

Installing Oracle Secure Backup on Linux or UNIX with installob

Provides instructions for performing the actual installation using the installob script.

Creating Attach Points with makedev

Uninstalling Oracle Secure Backup on Linux or UNIX

3 Installing Oracle Secure Backup on Windows

Preliminary Steps

Running the Oracle Secure Backup Windows Installer

Guides through the steps of running the Oracle Secure Backup installer on Windows.

Configuring Oracle Secure Backup

Explains how to configure the Oracle Secure Backup installation using its utility.

Configuring Firewalls for Oracle Secure Backup on Windows

Uninstalling Oracle Secure Backup on Windows

4 Oracle Secure Backup User Interfaces

Using Oracle Secure Backup in Enterprise Manager

Explains how to use Oracle Enterprise Manager for Oracle Secure Backup tasks.

Using the Oracle Secure Backup Web Tool

Details how to use the browser-based Oracle Secure Backup Web tool.

Using obtool

Describes the command-line interface for Oracle Secure Backup operations.

5 Configuring and Managing the Administrative Domain

Administrative Domain Configuration Overview

Configuring the Administrative Domain with Hosts

Explains how to configure the administrative domain by adding hosts.

Adding Tape Devices to an Administrative Domain

Details how to configure tape drives and libraries for use with Oracle Secure Backup.

6 Managing Security for Backup Networks

Backup Network Security Overview

Planning Security for an Administrative Domain

Host Authentication and Communication

Explains SSL, identity certificates, and communication security.

Encryption of Data in Transit

Default Security Configuration

Configuring Security for the Administrative Domain

Explains how to configure security settings for the administrative domain.

Managing Certificates with obcm