Unfortunately, I'm not aware of any third-party tools that would allow you to automate Oracle CPUsDevelopment of such a tool would be extremely problematic for the following reasons;
- Each Oracle CPU may differ significantly from the last. Directory naming conventions change, steps have been added and removed, etc. The lack of consistency makes automation extremely difficult.
- The tool would need to utilize and/or store the system passwords to your database, or have a privileged login on your servers. The presents a significant security risk when the "keys to the kingdom" are stored in a centralized location.
- Oracle recommends that patches are applied directly at the server console. If this is impossible, this type of administration needs to be accomplished logged into the database server (in Linux/Unix) or through a Remote Desktop to the database server with the '/console' option (MSWindows). Once again, automating for every server configuration could prove quite difficult.
Several of the DoD databases I had worked on were extremely sensitive to downtime, so a quick and efficient patching solution was required. We painstakingly standardized the databases from the system level and this allowed us to perform the patching on our test servers using OPatch, then collect and script out the necessary patch application actions and commands.
The results were an extremely fast, repeatable and were standardized process that required minimal manpower to accomplish. We were also able to archive the scripts to use as future resources, and bring another facet of the data storage system under positive configuration management control. I hope this gives you a useful idea of how to accomplish your goal.
Dig Deeper on Oracle database security
Related Q&A from Brian Fedorko
A reader asks a question about the GRANT OPTION as it relates to object privileges in Oracle database security. Continue Reading
Interested in using fingerprint scanning in Oracle 9i? Learn about Oracle 9i security and how it works with a biometric scanner in this tip from ... Continue Reading
Oracle expert Brian Fedorko explains how to enable remote Oracle OS authentication in Windows and Linux, including why you might receive the ORA-... Continue Reading