We are looking to integrate Oracle logs into a secure workstation, which will then forward them to our external security monitoring platform, XDR.
We request Oracle support to guide us on the following:
- Log Transportation Mechanism:
- What are the recommended and supported methods to securely extract and forward logs from Oracle to an external system?
- Is there a native or API-based approach to achieve this?
- Log Types Required:
- User Activity Logs: Actions performed by users including session activity, queries, DML/DDL commands, and other interactions.
- Authentication Logs: Login attempts (successful and failed), session creation, logouts, and any abnormal authentication behavior.
- Security Considerations:
- Ensure logs can be transferred without exposing sensitive data.
- Support for sending logs to a hardened Linux-based workstation (Syslog or agent-based collection, if available).