Hello all, I am looking for all the ways that I can make connections to oracle databases through TOAD to be more secure. Using oracle IDs and Passwords to authenticate via the TNS or DIRECT methods isn't secure enough. If those credentials are compromised by individuals who somehow manages to gain access to the network, they will be able to easily login to the databases using the credentials. What additional security measures / technologies can I implement which will require additional authentication when accessing databases through TOAD for Oracle? I am using version 17. Thanks!
Great question, and one that applies to ALL applications that touch the database/s, not only Toad.
The best way to secure connections to the database is at the database level, not at the application level. e.g. TNSnames and SQL*net are NOT Quest or Toad protocols, they are Oracle's. Check with the Oracle team, or your DBAs, on ways that you can harden the connectivity to the database, for example, using wallets, etc.
One way you can do this is with LDAP, but the setup is complex and costly. Another way is with TLS, but your users must have digital certificates for client authentication.
Cheers,
Russ