Professional Documents
Culture Documents
Implementing Oracle Database Auditing
Implementing Oracle Database Auditing
1 Enable
database Parameter
DBA auditing. User
file executes
2 Specify audit options. command.
Database
Server
process
Audit
Generate
options
audit trail.
3 Review audit
information.
Audit
trail OS or XML
4 Maintain audit audit
trail. trail
STATEMENTID,
AUDIT_TRAIL=DB, EXTENDED
ENTRYID
DBA_AUDIT_TRAIL DBA_FGA_AUDIT_TRAIL
EXTENDED_TIMESTAMP,
PROXY_SESSIONID, GLOBAL_UID,
INSTANCE_NUMBER, OS_PROCESS, TRANSACTIONID,
SCN, SQL_BIND, SQL_TEXT
DBA_COMMON_AUDIT_TRAIL
Policy: AUDIT_EMPS_SALARY
SELECT name, salary
FROM employees
WHERE
department_id = 10; employees
dbms_fga.add_policy (
• Defines: object_schema => 'HR',
object_name => 'EMPLOYEES',
– Audit criteria policy_name => 'audit_emps_salary',
– Audit action audit_condition=> 'department_id=10',
audit_column => 'SALARY,COMMISSION_PCT',
• Is created with handler_schema => 'secure',
DBMS_FGA handler_module => 'log_emps_salary',
enable => TRUE,
.ADD_POLICY statement_types => 'SELECT,UPDATE');
UPDATE hr.employees
SET salary = 1000
WHERE commission_pct = .2;
UPDATE hr.employees
SET salary = 1000
WHERE employee_id = 200;