sion

Oracle Fusion Middleware : Oracle Identity and Access Management Suite 10g/11gR1/11gR2PS1,PS2,PS3 : OIM | OAM,OAAM,OIF | OID, OVD, DIP | OUD/ ODSEE | Microsft AD | OpenLDAP | ADF | EBS R12 | OECMCCR4 | Business Intelleigence - Bi Publisher | Banking | Demo Applications | Core Java | SQL | PLSQL | Web services | Weblogic | Tomcat | JBoss | OHS | WebGate | WebCenter | In any Queries please Contact Me : info@oratechsoft.com

Search This Blog

Monday, 28 July 2025

CyberArk: SQL plus launch using CyberArk PAM 14.4

Connect to Oracle SQLPlus via CyberArk PSM (Privileged Session Manager)

CyberArk PSM offers secure, isolated, and monitored access to Oracle databases using SQLPlus. This article explains how to configure CyberArk PSM to enable connections to Oracle databases using SQLPlus OIC 19c.

 Prerequisites

To connect to Oracle databases via SQLPlus:

  • Oracle Instant Client (OIC) 19c x64 is required

  • Recommended version: 19.18.0 or as per Oracle compatibility matrix

  • SQLPlus is typically installed automatically during PSM installation

 Installation and Configuration Workflow

TaskDescription
1️⃣ Install Oracle Database ToolsSQLPlus + Instant Client (auto-installed with PSM)
2️⃣ Configure AppLockerAllow SQLPlus to run on the PSM
3️⃣ Configure PSM Connection ComponentSetup connection path and settings in PVWA

Step 1: Verify Oracle SQLPlus Installation

No manual installation is needed — SQLPlus is automatically installed during the PSM setup.

  • Confirm SQLPlus is located at:

    makefile

    C:\oracle\instantclient\sqlplus.exe

Step 2: Configure AppLocker for Oracle SQLPlus

  1. Navigate to the AppLocker configuration file:

    java

    C:\Program Files (x86)\CyberArk\PSM\Hardening\PSMConfigureAppLocker.xml

  2. Remove Read-Only Attribute

    • Right-click the XML file → Properties → Uncheck "Read-only"

  3. Edit the XML:

    • Open PSMConfigureAppLocker.xml

    • Find the Oracle x64 connection clients section

    • Uncomment the Oracle section by removing the lines:

      xml

      <!-- If relevant, uncomment this part after installing Oracle client and Toad 16 x64.
...
End of oracle connections comment -->

  4. Verify Path Accuracy:
    Ensure the paths match where sqlplus.exe is installed.

  5. Save the XML file

  6. Apply the AppLocker Configuration:
    Open PowerShell as Administrator and run:

    powershell

    CD "C:\Program Files (x86)\CyberArk\PSM\Hardening"
./PSMConfigureAppLocker.ps1

Step 3: Configure SQLPlus Connection Component in PVWA

  1. Login to PVWA as an Admin.

  2. Go to:
    Administration → System Configuration → Options

  3. Expand:
    Connection Components → PSM-SQLPlus

  4. Verify Target Settings:

    • Ensure the path is set correctly for SQLPlus:

      css

      "C:\oracle\instantclient\sqlplus.exe" "{UserName}/{Password}@{Address}[:{Port}][/{Database}] [{ConnectAs}]"




Ref : Oracle SQL Developer | CyberArk Docs
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)