2.2.9 Ensure 'REMOTE_OS_ROLES' Is Set to 'FALSE'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

The remote_os_roles setting permits remote users' OS roles to be applied to database management. This setting should have a value of FALSE.

Rationale:

Allowing remote clients OS roles to have permissions for database management could cause privilege overlaps and generally weaken security.

Solution

To remediate this setting, execute the following SQL statement.

ALTER SYSTEM SET REMOTE_OS_ROLES = FALSE SCOPE = SPFILE;

See Also

https://workbench.cisecurity.org/files/2868