Q

Understanding the Audit Trail

Where is the Audit Trailand how does it work? The Audit Trail is kept in an internal table, SYS.AUD$ or in an external file to the database. Which is used depends on the AUDIT_TRAIL initialization parameter. Many people keep the audit trail records in the SYS.AUD$ for safe keeping. Before you can use it, you have to set the AUDIT_TRAIL initialization parameter to DB or TRUE and then bounce your database. Then, you have to tell the database...

what to audit. This is done with the AUDIT command. You can audit database access or access to specific tables. Oracle9i also introduces fine-grained auditing where you can audit access to specific records in specific rows. Once you've set up auditing and told the database what to audit, everytime that condition is met, a record is placed in the audit trail. You can query the audit trail, if it is in SYS.AUD$, by query the DBA_AUDIT_* views.

One of Oracle's best experts on database security is Pete Finnigan. He has a Web site with plenty of examples and white papers on auditing in an Oracle database.

This was first published in May 2004
This Content Component encountered an error

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchDataManagement

SearchBusinessAnalytics

SearchSAP

SearchSQLServer

TheServerSide

SearchDataCenter

SearchContentManagement

SearchFinancialApplications

Close