ralph_rea
asked on
Oracle Audit for some objects
Hi,
I enable auditing for my DB ORCL:
Oracle Database 11g Enterprise Edition Release 11.2.0.3.0 - 64bit Production
TNS for 64-bit Windows: Version 11.2.0.3.0 - Production
ALTER SYSTEM SET audit_trail=db SCOPE=SPFILE;
AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_A BY ACCESS;
AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_B BY ACCESS;
AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_C BY ACCESS;
Access auditing writes records on SYS.AUD$ table but I need to audit all DML statement except for the owners of the objects user that connect to the instance (i.e. audit only on the objects non-proprietary)
for example:
USER_A user has:
grant UPDATE any table;
grant INSERT any table;
grant DELETE any table;
connect USER_A/password@ORCL
update table_1
set col_1= 'test';
NO AUDIT, because the table's owner (table_1) is USER_A
update TOM.table_2
set col_1= 'test';
AUDIT OK, because the table's owner (table_2) is NOT USER_A (but TOM)
How can I enable the audit only on the objects non-proprietary?
Thanks in advance!
I enable auditing for my DB ORCL:
Oracle Database 11g Enterprise Edition Release 11.2.0.3.0 - 64bit Production
TNS for 64-bit Windows: Version 11.2.0.3.0 - Production
ALTER SYSTEM SET audit_trail=db SCOPE=SPFILE;
AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_A BY ACCESS;
AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_B BY ACCESS;
AUDIT UPDATE TABLE, INSERT TABLE, DELETE TABLE BY USER_C BY ACCESS;
Access auditing writes records on SYS.AUD$ table but I need to audit all DML statement except for the owners of the objects user that connect to the instance (i.e. audit only on the objects non-proprietary)
for example:
USER_A user has:
grant UPDATE any table;
grant INSERT any table;
grant DELETE any table;
connect USER_A/password@ORCL
update table_1
set col_1= 'test';
NO AUDIT, because the table's owner (table_1) is USER_A
update TOM.table_2
set col_1= 'test';
AUDIT OK, because the table's owner (table_2) is NOT USER_A (but TOM)
How can I enable the audit only on the objects non-proprietary?
Thanks in advance!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.