I'm trying to do vulnreability scans on oracle.
As the support docs say, querying the database is largely inacurate because tables listing patches are often not updated.
So I"m trying to use opatch.
Opatch doesn't return anything.
It appears that the unix account used for scanning doesn't have enough permissions in spite of being in the dba group.
I can't even run that command opatch lscommand as that user successfully.
Was wondering how other people are doing that.
Do you have to use the oracle account (the owner of the files)?
I've seen indications that opatch requires read write to the entire oracle install directory . We wouldn't want to give the dba group that many permissions.
Are other people using opatch successfully?