Link to home
Start Free TrialLog in
Avatar of ralph_rea
ralph_rea

asked on

Oracle Audit for some objects

Hi,
I enable auditing for my DB ORCL:
Oracle Database 11g Enterprise Edition Release 11.2.0.3.0 - 64bit Production
TNS for 64-bit Windows: Version 11.2.0.3.0 - Production

ALTER SYSTEM SET audit_trail=db SCOPE=SPFILE;

AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_A BY ACCESS;

AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_B BY ACCESS;

AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_C BY ACCESS;

Access auditing writes records on SYS.AUD$ table but I need to audit all DML statement except for the owners of the objects user that connect to the instance (i.e. audit only on the objects non-proprietary)

for example:

USER_A user has:
grant UPDATE any table;
grant INSERT any table;
grant DELETE any table;

connect USER_A/password@ORCL

update table_1
set col_1= 'test';

NO AUDIT, because the table's owner (table_1) is USER_A

update TOM.table_2
set col_1= 'test';

AUDIT OK, because the table's owner (table_2) is NOT USER_A (but TOM)

How can I enable the audit only on the objects non-proprietary?

Thanks in advance!
ASKER CERTIFIED SOLUTION
Avatar of MikeOM_DBA
MikeOM_DBA
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial