The most valuable feature of Oracle Audit Vault is that it is agentless and enhanced user interface.

View full review »

Oracle Audit Vault has a lot of great features, but what I find most valuable is the database firewall. The assessment reports in version 19.10 are also incredibly useful for conducting security assessments and ensuring compliance with regulations.

View full review »

It has become an exchange-out part of the business itself. The new version comes with agentless capabilities. In my previous projects, I used agents that had to be installed on different databases that further needed to be monitored. Those features haven’t been released across all the regions, so they might not be available for use right now. All of the other components that make up the infrastructure in the environment including the operating system are also quite valuable. 

View full review »

Different features I have been using in this product:

• Audit policies for Oracle Database
• Reports and report schedules
• Entitlement auditing for Oracle Database
• Stored procedure auditing
• Alerts and email notifications

All the above features will allow you to manage and monitor the infrastructure, databases very easily and create custom reports depending on what you want.

View full review »

Its security is most valuable. All companies are looking to secure their data because people around the world are stealing data from IT, banks, and other companies. The most important thing is to secure data. It should not go into the hands of hackers. A company's strength is in the security of its data, and customers want to know how safe the data is in a company.

It is a good product for controlling all databases. It is helpful for auditing the data. When people are doing any actions on the databases, they are recorded automatically in the vault. You can work on the collected data to find out exactly what is happening on a database. You can implement database encryption on the databases to control people's access to the database content, such as rows and tables.

View full review »

Reports and alerts are most valuable to us. Management wanted complete traceability of non-DBAs accessing databases using a database power user account. With the help of Audit Vault custom alerts, we were able to control this with 100% compliance.

View full review »

The ability to isolate the view and who has the rights to view the audit logs is valuable to us. Senior executives can check the system, the IT team, the IT individuals, and the administrators. 

Another interesting feature is the ability to view the traffic by the IT, as well as individual machines. This can help scale down trailing traffic on the network. It makes it possible to look into a traffic jam from a particular machine by MAC and IP address.

Also, address administrators cannot go in and delete audit trails which would otherwise allow users to circumvent the audit trail. In the implementation of the Oracle Audit Vault, we can monitor not only Oracle Databases, but also monitoring, server databases that within the environment. It isn't only specific Oracle Database.

View full review »

The most valuable features of this product are auditing the old and new values after each change in the database, REDO_COLL and capturing application context functionalities.

REDO_COLL is a function provided by Oracle Audit Vault where the system captures all values that are changed in the audited tables of a database. So if someone fires an update in a table, the auditing system will not only capture the value which was enforced as part of the update, but will also capture the old value (before the update was done).

Application Context is an interesting implementation, where we can pass additional information about front-desk application users in the audit trail. So, when we look at an audit log we not only see the database user but also the application user who has viewed/changed the data.

View full review »

The feature that I have found most valuable is that it can help us secure our databases. The configuration is very good.

View full review »

The following features of the product provide additional benefits for the user:

• If it's from an Oracle family, we can get quick support from Oracle support.
• Reporting screens are more useful, we can get many summary reports very quickly.
• Compared to previous versions, agent operation logic has been changed. The agent is now managed only, not collector + agent. This makes it easy.

• It has the added advantage of having a database firewall feature that is not in previous versions or other equivalent products.

View full review »

The most valuable feature is that Oracle Access Vault is integrated with our SIM (Security Information Management tool), which gives us a complete picture of what access is being provisioned in our organization. We do not use the interface provided by Oracle Audit Vault, except to export the data into our SIM.

View full review »

The most valuable feature is the ability to create inbuilt reports for compliance, which have dealt with the rules made it easier. This means that we don't have to develop them from scratch, which makes life so much easier.

View full review »

Audit reporting and its user-friendliness that is required by auditors are valuable features.

View full review »

We have a situation for a bank as a client. We were able to deploy Oracle Audit Vault for them. The end-user is a key part of the system in the information department. 

For maintenance, only one person is required and he's an admin. Oracle Audit Vault was used extensively and our clients are quite comfortable with it.

We believe the product will be used for a long time.

View full review »

AVDF can monitor SQL traffic to look for alerts on and prevent unauthorized or out-of-policy SQL statements. Because the final target of external attacks is SQL, it's very effective to check SQL level. In addition, this product transparently monitors the traffic; changing the applications is not necessary.

View full review »

The most valuable features of this solution are:

• Autonomous data collection.
• Ease of deployment to work and integrate with heterogeneous platforms.
• Reporting infrastructure is awesome and very flexible.
• The interfaces are intuitive and easy to use and navigate through.
• The solution has a well designed RBAC for the support of the business and it is secure.

View full review »

Oracle Database Firewall, Database Vault and Data hiding tools present a layered security approach to protecting, controlling, auditing and hiding sensitive data and access to sensitive data.

The following key features make this product a valuable tool:

• Transparent database activity monitoring over the network - minimum changes to the database client and server configuration, and no additional load on the network or on the database servers being monitored. Hence, it doesn’t affect the performance.
• Capability to block unauthorized database activity (such as SQL injection attacks) using a specialized grammar analysis that allows accurate enforcement of activity whitelists and blacklists.
• Comprehensive database activity based on consolidated database logs, securely stored in a centralized, enterprise-scale repository ensuring ease of monitoring.
• Centralized data security auditing across the enterprise, achieved by consolidating OS, directory, and other logs into the same centralized repository.
• Fine-grained, correlated alerting based on analysis and policy enforcement of consolidated logs
• Out-of-the-box audit reporting across multiple sources (e.g., Oracle and non-Oracle databases, directory and OS) to satisfy common regulatory requirements such as PCI, DSS, SOX and other compliance regimes.
• Custom reports and powerful BI tools that allow organizations to go as deep as necessary for forensic analysis or e-discovery purposes.
• Easy-to-deploy software appliance based on hardened operating system and database that does not require database administrator (DBA) skills, allowing the solution to be owned and managed by IT security staff.
• Alert on suspicious and unauthorized activities in real time. Review user rights, identify dormant users and excessive privileges.
• Detect and monitor changes to stored procedures.

View full review »

One of the most valuable features is the ability to audit database use. It conformed well. We set it up the way we wanted it.

View full review »

We use the separation of duty feature because part of the database is encrypted, and the database administrators, such as myself, should have no access to this area. It belongs to the security team.

View full review »

The two most valuable features of this product are:

• Database access control
• Auditing of users

First of all, it is very easy to configure users and their appropriate roles and permissions on a database. The product allows us to set rules and restrictions at very minute levels.

Secondly, it audits user activities and presents relevant information in graphs and tabular formats; includes details, such as time, query and objects. We can create custom alerts for transactions and monitor and block incoming requests.

It also helps in IT auditing as we can retrieve required information in a matter of clicks.

View full review »

• Audit log collection from a heterogeneous RDBMS environment
• Offers warehouse-based control over the log DB in a secured and encrypted way

Additionally, it offers a RAC option along with DB vault configuration.

View full review »

The out-of-the-box reports feature is most valuable because it covers most of the useful auditing features that you might need.

View full review »

The critical event alerts and reporting features have greatly reduced loss of man hours that would have been spent on going through the whole audit event logs.

View full review »

Protection, audit, and security of the database are valuable features.

View full review »

I like the audit report. This product has a lot of report templates and you can customize them.

One of the useful reports is the activity report. Our customer is an insurance company. They want to log every detail regarding financial transaction activities (insert, update and delete). If something happens with the data, they can trace it to the person who performed the activity, and where and when they did it.

View full review »

The most valuable features of this product are:

• PL/SQL auditing: It helps to control the code updates in a sensitive environment.

• Inbuilt compliance reports - In data-sensitive environments where auditing teams require generation of reports for specific database such as SOX-compliant financial databases, HIPAA-compliant healthcare databases or PCI-compliant databases, leveraging these inbuilt reports in Oracle Audit Vault 12c can be of great value.

View full review »

Audit Vault is a good Oracle Tool to collect all Database Audit Information in a single database repository for managing Database Security. I have used it to collect DB login info , Server access info, SQL statements , before and after images of Data using OS, DB and REDO collectors. Provides and easy to use browser based GUI to generate Standard Reports for Compliance purposes - SOX(Sabanes Oxley) and PCI(Payment Card Industry) compliance and allows custom report generation too. View full review »