Edit D:\app\Administrator\product\11.2.0\dbhome_1\oc4j\j2ee\oc4j_applications\applications\em\em\online_help\tdpsg\tdpsg_auditing008.htm
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <meta http-equiv="Content-Type" content="text/html; charset=us-ascii" /> <meta http-equiv="Content-Style-Type" content="text/css" /> <meta http-equiv="Content-Script-Type" content="text/javascript" /> <title>About Default Auditing</title> <meta name="generator" content="Oracle DARB XHTML Converter (Mode = ohj/ohw) - Version 5.1" /> <meta name="date" content="2009-06-02T18:13:3Z" /> <meta name="robots" content="noarchive" /> <meta name="doctitle" content="About Default Auditing" /> <meta name="relnum" content="11g Release 2 (11.2)" /> <meta name="partnum" content="E10575-01" /> <link rel="copyright" href="./dcommon/html/cpyr.htm" title="Copyright" type="text/html" /> <link rel="stylesheet" href="./dcommon/css/blafdoc.css" title="Oracle BLAFDoc" type="text/css" /> <link rel="contents" href="toc.htm" title="Contents" type="text/html" /> <link rel="prev" href="tdpsg_auditing007.htm" title="Previous" type="text/html" /> <link rel="next" href="tdpsg_auditing009.htm" title="Next" type="text/html" /> <script src="./callback.js" type="text/javascript"></script> <noscript>Your browser does not support JavaScript. This help page requires JavaScript to render correctly.</noscript> </head> <body> <div class="zz-skip-header"><a href="#BEGIN">Skip Headers</a></div> <table class="simple oac_no_warn" summary="" cellspacing="0" cellpadding="0" width="100%"> <col width="86%" /> <col width="*" /> <tr valign="bottom"> <td align="left"></td> <td align="center"><a href="tdpsg_auditing007.htm"><img src="./dcommon/gifs/leftnav.gif" alt="Previous" /><br /> <span class="icon">Previous</span></a> </td> <td align="center"><a href="tdpsg_auditing009.htm"><img src="./dcommon/gifs/rightnav.gif" alt="Next" /><br /> <span class="icon">Next</span></a></td> </tr> </table> <p><a id="BCGGDJGC" name="BCGGDJGC"></a><a id="TDPSG55221" name="TDPSG55221"></a></p> <div class="sect3"><!-- infolevel="all" infotype="General" --> <h1>About Default Auditing</h1> <a name="BEGIN" id="BEGIN"></a> <p>When <a id="sthref468" name="sthref468"></a><a id="sthref469" name="sthref469"></a>you create a new database or modify an existing database, you use the Security Settings window in Database Configuration Assistant (DBCA) to enable or disable its default security settings. This section explains how to start DBCA and enable the default security settings. Oracle recommends that you enable these settings. When these settings are enabled, Oracle Database audits some of the security-relevant SQL statements and privileges. It also sets the <code>AUDIT_TRAIL</code> initialization parameter to <code>DB</code>. If you decide to use a different auditing option, for example, <code>OS</code> if you want to write the audit trail records to operating system files, you can do that: Oracle Database continues to audit the privileges that are audited by default. If you disable auditing by setting the <code>AUDIT_TRAIL</code> parameter to <code>NONE</code>, then no auditing takes place.</p> <p>Oracle Database audits the <code>AUDIT ROLE</code> SQL statement by default. The privileges that are audited by default are as follows:</p> <div class="inftblsimplewide"> <table class="SimpleWide" title="Audited privileges" summary="Listing of commands that are audited by default, top to bottom, left to right" dir="ltr" width="100%"> <col width="29%" /> <col width="33%" /> <col width="*" /> <tbody> <tr align="left" valign="top"> <td align="left"><code>ALTER ANY PROCEDURE</code></td> <td align="left"><code>CREATE ANY LIBRARY</code></td> <td align="left"><code>DROP ANY TABLE</code></td> </tr> <tr align="left" valign="top"> <td align="left"><code>ALTER ANY TABLE</code></td> <td align="left"><code>CREATE ANY PROCEDURE</code></td> <td align="left"><code>DROP PROFILE</code></td> </tr> <tr align="left" valign="top"> <td align="left"><code>ALTER DATABASE</code></td> <td align="left"><code>CREATE ANY TABLE</code></td> <td align="left"><code>DROP USER</code></td> </tr> <tr align="left" valign="top"> <td align="left"><code>ALTER PROFILE</code></td> <td align="left"><code>CREATE EXTERNAL JOB</code></td> <td align="left"><code>EXEMPT ACCESS POLICY</code></td> </tr> <tr align="left" valign="top"> <td align="left"><code>ALTER SYSTEM</code></td> <td align="left"><code>CREATE PUBLIC DB LINK</code></td> <td align="left"><code>GRANT ANY OBJECT PRIVILEGE</code></td> </tr> <tr align="left" valign="top"> <td align="left"><code>ALTER USER</code></td> <td align="left"><code>CREATE SESSION</code></td> <td align="left"><code>GRANT ANY PRIVILEGE</code></td> </tr> <tr align="left" valign="top"> <td align="left"><code>AUDIT SYSTEM</code></td> <td align="left"><code>CREATE USER</code></td> <td align="left"><code>GRANT ANY ROLE</code></td> </tr> <tr align="left" valign="top"> <td align="left"><code>CREATE ANY JOB</code></td> <td align="left"><code>DROP ANY PROCEDURE</code></td> <td align="left"><br /></td> </tr> </tbody> </table> <br /></div> <!-- class="inftblsimplewide" --> <p>Oracle Database also audits all privileges and statements that have the <code>BY ACCESS</code> clause.</p> <p>If you are concerned that auditing these statements and privileges will adversely affect your applications, you can disable auditing by using Database Configuration Assistant (DBCA). When you modify your applications to use auditing, you can reenable the default auditing of these statements and privileges.</p> <p>Oracle strongly recommends that you enable auditing by default. Auditing is an effective method of enforcing strong internal controls so that your site can meet its regulatory compliance requirements, as defined in the <a id="sthref470" name="sthref470"></a><a id="sthref471" name="sthref471"></a>Sarbanes-Oxley Act. This enables you to monitor business operations and catch any activities that may deviate from company policy. Doing so translates into tightly controlled access to your database and the application software. By enabling auditing by default, you can generate an audit record for audit and compliance personnel.</p> <div class="helpinfonotealso"> <h2>Related Topics</h2> <p><a href="tdpsg_auditing001.htm#BCGJGGFJ">About Auditing</a></p> <p><a href="tdpsg_auditing009.htm#BCGFBEJD">Enabling Default Auditing</a> to learn how to enable default auditing</p> <p><a href="javascript:open('http://www.oracle.com/pls/db112/lookup?id=SQLRF','newWindow').focus()"><span class="italic">Oracle Database SQL Language Reference</span></a> for detailed information about the SQL statements described in this section and the <code>AUDIT_TRAIL</code> initialization parameter</p> </div> </div> <!-- class="sect3" --> <!-- Start Footer --> <div class="footer"> <table class="simple oac_no_warn" summary="" cellspacing="0" cellpadding="0" width="100%"> <col width="86%" /> <col width="*" /> <tr> <td align="left"><span class="copyrightlogo">Copyright © 2006, 2009, Oracle and/or its affiliates. All rights reserved.</span><br /> <a href="./dcommon/html/cpyr.htm"><span class="copyrightlogo">Legal Notices</span></a></td> <td align="center"><a href="tdpsg_auditing007.htm"><img src="./dcommon/gifs/leftnav.gif" alt="Previous" /><br /> <span class="icon">Previous</span></a> </td> <td align="center"><a href="tdpsg_auditing009.htm"><img src="./dcommon/gifs/rightnav.gif" alt="Next" /><br /> <span class="icon">Next</span></a></td> </tr> </table> </div> <!-- class="footer" --> </body> </html>
Ms-Dos/Windows
Unix
Write backup
jsp File Browser version 1.2 by
www.vonloesch.de