Set Up Oracle HTTP Server Authentication

Create an Oracle HTTP Server record in order to authenticate to an Oracle HTTP server running on a Windows or Unix host, and scan it for compliance. For Windows hosts, Windows authentication is required so you'll also need a Windows record for the host running the server. For Unix hosts, Unix authentication is required so you'll also need a Unix record for the host running the server.

This record type is only available in accounts with PA or SCA, and is only supported for compliance scans.

Which technologies are supported?

For the most current list of supported authentication technologies and the versions that have been certified for VM and PA by record type, please refer to the following article: 

Authentication Technologies Matrix

How do I get started?

- Go to Scans > Authentication.

- Check that you already have a record defined for each host running an Oracle HTTP server. For Windows hosts, a Windows record is required. For Unix hosts, a Unix record is required.

- Create an Oracle HTTP Server record for the same host (IP). Go to New > Applications > Oracle HTTP Server.

Note: If the Network Support feature is enabled, then the Windows/Unix record must have the same network selected as the Oracle HTTP Server record.

Tell me about user permissionsTell me about user permissions

Managers can add authentication records.

Unit Managers must be granted these permissions:
- Manage PA module / Manage SCA module
- Create/edit authentication records/vaults

Windows/Unix Configuration

You’ll need to tell us the home path where the Oracle HTTP Server is installed. Then enter the full directory path where domains are configured (required for Oracle HTTP Server 12c and above), the full path where instances are configured (required for Oracle HTTP Server 11g), and the instance name you want to authenticate to. Leave the instance name empty to auto discover the instances.

Tag Support

If your subscription has Tag Support for Authentication Records enabled, then you'll see additional options for specifying hosts using asset tags. Choose an asset type and then provide IPs or tags to the record. Your asset type options are: IPs/Ranges, IP Range in Tag Rule and Asset Tags.

For domain level authentication, you can only add assets when the domain type is NetBIOS, User-Selected IPs. The Assets section is disabled when the domain type is NetBIOS, Service-Selected IPs, or Active Directory.  

Asset Type: IPs/Ranges
Use this option to add IP addresses/ranges to the record. Enter the IP addresses/ranges in the field provided.

Asset Type: IP Range in Tag Rule
Use this option to add tags that have IP address ranges defined in the tag rule. All IP addresses defined in the tag rule will be associated with the record, including IPs that don’t already have the tag assigned. Click Add Tag to pick tags to include or exclude. Note that only tags with the dynamic tag rule “IP Address in Range(s)” will be available in the tag selector.

Asset Type: Asset Tags
Use this option to add tags to the record for the assets you want included. IP addresses with the selected tags already assigned will be associated with the record. Click Add Tag to pick tags to include or exclude.

Learn more about tag support for authentication records

Quick Links

Why use host authentication

 

 

 

© 2026 Qualys, Inc. All rights reserved. Privacy Policy. Last updated: May, 2026