Solved

Oracle Financials Auditing

Posted on 2004-10-27
1,068 Views
Last Modified: 2013-12-01
I am auditing Oracle Financials (11.0.3 version)  via Oracle aiditing rather than via the the Financials.
I need to know the os username of the person who is running the app rather than 'applprd' or some generic aplication id.
I set up auditing ' by session' but I get the generic userid and the action_name is 'session rec' when I select from dba_audit_trail.
I would like to see the osusername and the action , such as  'select, insert, update,delete'.

This is one row of the output:

27-oct-04 10:24:19 applprd    APPS       APPLSYS    FND_USER                             SESSION REC

selecting  from the aud$ table is not giving the desired result either.
I also tried audit .. by access but the action_name comes out as 'session_rec' as well.

Thanks for the help.

If this is easier to do via the APP then I nedd to know how.

0
Question by:praimsankar
    3 Comments
     
    LVL 2

    Expert Comment

    by:dramacqueen
    Hi praimsankar,
    You could use the OSUSER from V$SESSION dynamic view.  You would need to have some way of identifying which session you are interested in.
    0
     
    LVL 10

    Accepted Solution

    by:
    The calls in the Financials are channel through a generic schema.
    You will NOT be able to use the Oracle Auditing for your need.
    You should setup a trigger (on major tables only) to insert rows in a table instead.
    0
     
    LVL 10

    Expert Comment

    by:peterside7
    Here's the columns in the aud$ view
    The only one you could use are the USERID and USERHOST, and since you tried to audit
    by access and session, nothing more can be done with the Oracle auditing.

    Maybe the TERMINAL field could give you info on where the command is coming from.
    Same info as in sqlplus:
    select userenv('TERMINAL') from dual;
    Gives you the name of your pc in client/server.



    SQL> desc sys.aud$;
     Name                                      Null?    Type
     ----------------------------------------- -------- -------------------------
     SESSIONID                                 NOT NULL NUMBER
     ENTRYID                                   NOT NULL NUMBER
     STATEMENT                                 NOT NULL NUMBER
     TIMESTAMP#                                NOT NULL DATE
     USERID                                             VARCHAR2(30)
     USERHOST                                           VARCHAR2(128)
     TERMINAL                                           VARCHAR2(255)
     ACTION#                                   NOT NULL NUMBER
     RETURNCODE                                NOT NULL NUMBER
     OBJ$CREATOR                                        VARCHAR2(30)
     OBJ$NAME                                           VARCHAR2(128)
     AUTH$PRIVILEGES                                    VARCHAR2(16)
     AUTH$GRANTEE                                       VARCHAR2(30)
     NEW$OWNER                                          VARCHAR2(30)
     NEW$NAME                                           VARCHAR2(128)
     SES$ACTIONS                                        VARCHAR2(19)
     SES$TID                                            NUMBER
     LOGOFF$LREAD                                       NUMBER
     LOGOFF$PREAD                                       NUMBER
     LOGOFF$LWRITE                                      NUMBER
     LOGOFF$DEAD                                        NUMBER
     LOGOFF$TIME                                        DATE
     COMMENT$TEXT                                       VARCHAR2(4000)
     CLIENTID                                           VARCHAR2(64)
     SPARE1                                             VARCHAR2(255)
     SPARE2                                             NUMBER
     OBJ$LABEL                                          RAW(255)
     SES$LABEL                                          RAW(255)
     PRIV$USED                                          NUMBER
     SESSIONCPU                                         NUMBER
    0

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Free Trending Threat Insights Every Day

    Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

    -Xmx and -Xms are the two JVM options often used to tune JVM heap size.   Here are some common mistakes made when using them:   Assume BigApp is a java class file for the below examples. 1.         Missing m, M, g or G at the end …
    Configure Web Service (server application) I. Configure security for Web Services methods First, we need to protect Session bean which implements the service: 1. Open EJB deployment descriptor (ejb-jar.xml) in the EJB project that contains you…
    Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
    This video discusses moving either the default database or any database to a new volume.

    934 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now