Using Standard Auditing to Monitor General Activities
To individually control the auditing of SQL statements and privileges, use the AUDIT and NOAUDIT statements. For more information, see "Auditing SQL Statements" on page 6-23 and "Auditing Privileges" on page 6-25. See Also: ■
■
■
Oracle Database 2 Day + Security Guide for instructions about using Database Configuration Assistant to enable default auditing Oracle Database Reference for detailed information about the AUDIT_TRAIL initialization parameter. Oracle Database SQL Language Reference for detailed information about the SQL statements described in this section
Using Standard Auditing to Monitor General Activities This section describes how to monitor general activities, such as SQL statements or privileges, by using standard auditing. It contains the following topics: ■
About Standard Auditing
■
Who Can Perform Standard Auditing?
■
Managing the Standard Audit Trail
■
Managing the Operating System Audit Trail
■
Deciding Whether to Use the Database or Operating System Audit Trail
■
Auditing SQL Statements
■
Auditing Privileges
■
Auditing SQL Statements and Privileges in a Multitier Environment
■
Auditing Schema Objects
■
Focusing Statement, Privilege, and Schema Auditing
■
Auditing Network Activity See Also: ■
■
"Auditing Administrative Users" on page 6-33 to learn how to use standard auditing to audit SYS users "Using Triggers to Record Customized Standard Auditing Information" on page 6-37 to learn how to create triggers that perform standard auditing
About Standard Auditing In standard auditing, you audit SQL statements, privileges, schema objects, and network activity. You accomplish this by using the AUDIT SQL statement to enable the auditing, and NOAUDIT to disable it. Alternatively, you can use Enterprise Manager Database Control to enable or disable standard auditing.
Who Can Perform Standard Auditing? Any user can audit the objects in his or her own schema, by using the AUDIT statement. To disable auditing of an object, the user can use the NOAUDIT statement. No additional privileges are needed to perform this task. Users can run AUDIT Configuring Auditing 6-11