Skip to Main Content

Cloud Security, Observability and Administration

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Requirement to Integrate Oracle User Activity and Authentication Logs to External Security Platform

Muhammad RazaJul 15 2025

We are looking to integrate Oracle logs into a secure workstation, which will then forward them to our external security monitoring platform, XDR.

We request Oracle support to guide us on the following:

  1. Log Transportation Mechanism:
    • What are the recommended and supported methods to securely extract and forward logs from Oracle to an external system?
    • Is there a native or API-based approach to achieve this?
  2. Log Types Required:
    • User Activity Logs: Actions performed by users including session activity, queries, DML/DDL commands, and other interactions.
    • Authentication Logs: Login attempts (successful and failed), session creation, logouts, and any abnormal authentication behavior.
  3. Security Considerations:
    • Ensure logs can be transferred without exposing sensitive data.
    • Support for sending logs to a hardened Linux-based workstation (Syslog or agent-based collection, if available).
Comments
Post Details
Added on Jul 15 2025
0 comments
20 views