12c数据库中预先定义了一些审计策略,可以通过auditunifiedenabled_policies视图进行确认默认开启的统一审计的审计策略。
SQL>select USER_NAME,POLICY_NAME,ENABLED_OPT,SUCCESS,FAILURE from audit_unified_enabled_policies;
USER_NAME POLICY_NAME ENABLED SUC FAI
------------- ------------------ ------- --- ---
ALL USERS ORA_SECURECONFIG BY YES YES
ALL USERS ORA_LOGON_FAILURES BY NO YES
SQL> noaudit policy ORA_SECURECONFIG;
Noaudit succeeded.
SQL> audit policy ORA_SECURECONFIG;
Audit succeeded.
CREATE AUDIT POLICY policy_name
{ {privilege_audit_clause [action_audit_clause ] [role_audit_clause ]}
| { action_audit_clause [role_audit_clause ] }
| { role_audit_clause }
}
[WHEN audit_condition EVALUATE PER {STATEMENT|SESSION|INSTANCE}]
[CONTAINER = {CURRENT | ALL}];
privilege_audit_clause :=
PRIVILEGES privilege1 [, privilege2]
action_audit_clause :=
{standard_actions | component_actions} [, component_actions ]
standard_actions :=
ACTIONS action1 [ ON {schema.obj_name | DIRECTORY directory_name| MINING MODEL schema.obj_name }] [, action2 [ ON {schema.obj_name| DIRECTORY directory_name | MINING MODEL schema.obj_name }]
component_actions :=
ACTIONS COMPONENT=[OLS|XS] action1 [,action2 ] |
ACTIONS COMPONENT=DV DV_action ON DV_object_name |
ACTIONS COMPONENT=DATAPUMP [ EXPORT | IMPORT | ALL ] |
ACTIONS COMPONENT=DIRECT_LOAD [ LOAD | ALL ]
role_audit_clause := ROLES role1 [, role2]
WHEN 'audit_condition := function operation value_list'
EVALUATE PER {STATEMENT|SESSION|INSTANCE}
例子:
CREATE AUDIT POLICY table_pol
PRIVILEGES CREATE ANY TABLE, DROP ANY TABLE
ROLES emp_admin, sales_admin;
如果您发现该资源为电子书等存在侵权的资源或对该资源描述不正确等,可点击“私信”按钮向作者进行反馈;如作者无回复可进行平台仲裁,我们会在第一时间进行处理!
加入交流群
请使用微信扫一扫!