Oracle 12c has implemented the unified auditing which is based off of system and user level policies. This article describes the creation and enabling audit policies.
- Logon to oracle server and logon to sqlplus as sysdba.
Verify that unified auditing is enabled with command: select value from v$option where parameter=’Unified Auditing’;
SQL> select value from v$option where parameter=’Unified Auditing’;
VALUE
—————————————————————-
TRUE
SQL>
- Create audit policy test_user, which will audit session creation and all RDBMS actions.
create audit policy test_user privileges create session
ACTIONS all;
- Enable the audit policy for the user test with the command: This enabling will only be for actions performed by user test.
audit policy test_user by test;
SQL> audit policy test_user by test;
Audit succeeded.
SQL>
- View the active policies.
SQL> select policy_name from audit_unified_enabled_policies;
POLICY_NAME
——————————————————————————–
TEST_USER
SQL>
- This completes the creation and enablement of Unified Audit policies.
Larry Catt
OCP