Auditing all objects...
currently i m working on AUDITING in Oracle 10g.2
-- Apply the policy to the SAL column of the EMP table.
BEGIN
DBMS_FGA.add_policy(
object_schema => 'AUDIT_TEST',
object_name => 'EMP',
policy_name => 'SAL_AUDIT',
audit_condition => NULL, -- Equivalent to TRUE
audit_column => 'SAL',
statement_types => 'SELECT,INSERT,UPDATE,DELETE');
END;
But I want to enable a auditing for AUDIT_TEST schema and all it's objects and columns.
BEGIN
DBMS_FGA.add_policy(
object_schema => 'AUDIT_TEST',
policy_name => 'ALL_AUDIT_TEST',
audit_condition => NULL, -- Equivalent to TRUE
statement_types => 'SELECT,INSERT,UPDATE,DELETE');
END;
HOw can we enable auditing for SCHEMA and all it's objects ?
Regards,
Rakesh Soni
http://rakeshocp.blogspot.com/
Object level auditing can be enabled for specific dml and ddl operation like.
audit delete table
audit update table.
Audit comes with over head so possible audit only required tables for suspicious activities.
AUDIT SELECT on emp;
AUDIT SELECT,delete on emp;
http://download.oracle.com/docs/cd/B19306_01/network.102/b14266/cfgaudit.htm#i1011521
Similar Messages
-
Audit activity for all objects in a schema
Hi,
Is there a way to audit all DDL statements and certain DML statements (i.e. DELETE) for all objects in a particular schema? I've been going through the Oracle documentation, and there doesn't seem to be a straightforward way to do this. For example, I've figured out that I can audit all DELETEs (too broad) or DELETEs on a particular schema object (too narrow), but nothing in between.
The "AUDIT...BY <USER>" statement looked promising, but it doesn't cover statements issued by other users with access to the schema.
Any help greatly appreciated!Is there a way to audit all DDL statements and certain DML statements (i.e. DELETE) for all objects in a particular schema?You can audit all the DDLs you need and the DMLs you need.
For example, I've figured out that I can audit all
DELETEs (too broad) or DELETEs on a particular schema
object (too narrow), but nothing in between.I think you need to explain more on what you need to do because your "but nothing in between" is not clear.
Something in between ?
SQL>AUDIT DELETE ON EMP;
SQL>AUDIT DELETE ON EMP WHENEVER SUCCESSFUL;
SQL>AUDIT DELETE ON EMP WHENEVER NOT SUCCESSFUL;
SQL>AUDIT SELECT ON EMP;
The "AUDIT...BY <USER>" statement looked promising, but it doesn't cover statements issued by other users with access to the schemaYou can audit BY ACCESS, BY PROXY, BY SESSION -
Auditing all users file access - too much information
Hi, I have enabled a GPO With the following: Computer Configuration\Policies\Windows Settings\Security Settings\Advanced Audit Policy Configuration\Audit Policies\Object Access -> Audit File System -
Success on a file server.
After that, I have enabled successful Create files/Create Folders on a folder for the built-in group Everyone.
That part works fine, I can see when users are creating files on the folders. But I also get a lot of Extreme amounts of other events logged in the Security log, and everything is coming from the backup agent running on the server (NetBackup in this case).
How come that a backup agent is creating the events like this? It makes filtering much harder afterwards. The business requirements is to audit Everyone who is adding files to a specific folder, not all the rest of the server. The server
is Win2008 R2.
Example:
An attempt was made to access an object.
Subject:
Security ID: SYSTEM
Account Name: FILESERVER01$
Account Domain: MYDOMAIN
Logon ID: 0x3e7
Object:
Object Server: Security
Object Type: File
Object Name: \Device\HarddiskVolumeShadowCopy58\Windows\winsxs\amd64_microsoft-windows-audio-audiocore_31bf3856ad364e35_6.1.7601.18619_none_d4cab625fb3adf96\audiosrv.dll
Handle ID: 0x3c4
Process Information:
Process ID: 0x1048
Process Name: C:\Program Files\VERITAS\NetBackup\bin\bpbkar32.exe
Access Request Information:
Accesses: WriteAttributesHi Steve,
I feel your pain, I turned on logging on a file server and found the security log filling 4GB in a couple of hours. I think the key is being very selective about what you audit. I found this article useful and it had some powershell and ideas for helping
make sense of the information overload - http://blogs.technet.com/b/mspfe/archive/2013/08/27/auditing-file-access-on-file-servers.aspx
In my opinion though you really need a third party solution to make this viable, two I've looked at are
Netwrix File Server Auditor and
FileAudit which seem very similar in functionality and ease of use. These basically read in the event log to provide long term archive and reporting on it.
Good luck,
Tim -
Determining Oracle Auditing events/objects
I am testing some software using an Oracle database and I have confirmed that auditing has been enabled (and I can find the logs ok). I have not been able to figure out what events/objects are being audited however.
Does anyone know which table contains this information??
Thanks,
dirby.DBA_OBJ_AUDIT_OPTS lists auditing options for all objects.
DBA_PRIVS_AUDIT_OPTS lists system privileges being audited. -
Audit specific objects for specific users
audit statement has the option to choose audit by user list
audit object has the option to choose audited objects
now i need to audit specific objects, i.e. user A's tables accessed by a specific group of users, let's say ALL users other than A
Is it a simple way to achieve this goal? (audit A's tables that accessed by all database users other than A)
Thanks!sorry, the link works now. However, there is nothing new in 10G, same as I read from 9i document. See my highlight below in the quoted document text, my requirements is the combination of them ( specific users and specific objects). Thanks anyway.
<quote
Table 8-1 Auditing Types and Descriptions
Type of Auditing (link to discussion) Meaning/Description
Statement Auditing Enables you to audit SQL statements by type of statement, not by the specific schema objects on which they operate. Typically broad, statement auditing audits the use of several types of related actions for each option. For example, AUDIT TABLE tracks several DDL statements regardless of the table on which they are issued. You can also set statement auditing to audit selected users or every user in the database.
Privilege Auditing
Enables you to audit the use of powerful system privileges that enable corresponding actions, such as AUDIT CREATE TABLE. Privilege auditing is more focused than statement auditing, which audits only a particular type of action. You can set privilege auditing to audit a selected user or every user in the database.
Schema Object Auditing
Enables you to audit specific statements on a particular schema object, such as AUDIT SELECT ON employees. Schema object auditing is very focused, auditing only a single specified type of statement (such as SELECT) on a specified schema object. Schema object auditing always applies to all users of the database.
Fine-Grained Auditing
Enables you to audit at the most granular level, data access and actions based on content, using any Boolean measure, such as value > 1,000,000. Enables auditing based on access to or changes in a column.
/quote> -
Determine all objects that a group has been assigned to
I am trying to determine all objects that a group has been assigned to. For example, I would like to know what communities and portletes a group has been assigned to.
I can retrieve the information directly from the plumtree database, however, I have not been able to determine how to accomplish this via the api.
I have tried the following
IPTObjectManager ptObjMng = ptSession.GetCommunities();
for(inti = 0; i<3;i++)
filter[i] = newObject[1];
filter[0][0] = PT_PROPIDS.PT_PROPID_USERGROUP_GROUPID;
filter[1][0] = PT_FILTEROPS.PT_FILTEROP_EQ;
filter[2][0] = 1634; //group id for my group
IPTQueryResult ptResult = ptObjMng.Query(PT_PROPIDS.PT_PROPID_ALL,-1,PT_PROPIDS.PT_PROPID_NAME,0,-1,filter);
I have verified that the group has been assigned to the community, however, this query returns no records.
How can I retrieve all communities or group that a specific group has been assigned too?
thanks in advanceThis sure would be a handy feature! iTunes has it so that you can easily tell which playlists a song is in. It would be convenient for iPhoto as well.
-
How to delete all objects in a package?
Hello,
I've seen a similar question here. But is there a tool or a smart way to delete all objects in a dev class or a transport request?
Best Regards
VolkerThese are really 3 questions??
1. To delete objects in a request there are a number of ways, here is one:
Position cursor on modifiable request.
Double click on request and choose 'Objects' tab
Choose object line you want to delete and click 'Delete'
Save your changes.
2. To delete objects in a Dev Class:
Go to work bench --> edit object, Class and give your class name, you will see delete option at the bottom of the screen.
3. How to delete all objects in a package:
here is a link with the steps you need for this: http://benxbrain.com/en/index.do?onInputProcessing(brai_object_thread)&001_threadid=0000161442&sysid=WP5&pgmid=R3TR&object=DOMA&obj_name=DEVCLASS&child_param= -
Hello, 2 questionss here>is it possible or is there a way to convert all object s outlines in all frames to fills at once and not frame by frame? and why sometimes erases the outline instead of converting it to fill?
Hello, 2 questionss here>is it possible or is there a way to convert all object s outlines in all frames to fills at once and not frame by frame? and why sometimes erases the outline instead of converting it to fill?
-
How to select the all object at a time while installing business content
Hi All,
how to select the all object at a time while installing business content Please let me know if nay document is there
Thanks Ahmed PashaHi,
Please check out the below links
[Business content Installation|http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/102906a4-f13d-2e10-7199-ce316ff254b8?QuickLink=index&overridelayout=true ]
[BI Content|http://wiki.sdn.sap.com/wiki/display/BI/InstallingBusinessContent]
Hope it helps.
Regards,
AL -
Undable to drop tablespace ORA-01561: failed to remove all objects in the
hi,
i am unable to drop table tablespace how can i do that??
please advise
DROP TABLESPACE tbs_tp2 INCLUDING CONTENTS AND datafiles
ERROR at line 1:
ORA-01561: failed to remove all objects in the tablespace specified
Thanks in advance
siva
chennaiHave you tried dropping the objects individually? You can see which objects still belong to this tablespace by using the DBA_SEGMENTS view as shown below:
SELECT OWNER, SEGMENT_NAME, SEGMENT_TYPE, TABLESPACE_NAME
FROM DBA_SEGMENTS
WHERE TABLESPACE_NAME=tbs_tp2;HTH! -
When releasing a transp. req.not all object in the request could be locked
When trying to release a transport request I get error message that "not all object in the request could be locked. Do you want to release them anyway"
I found an unreleased request (from someone else) containing few objects from my request. However I do not know the owner of that request (and I can not felete it). What to do?
If I release the transport anyway what could happen?Hi Tina,
If ur sure that u only want to release object which u have created and not the other objects then proceed in following way.
1. Go to SE10 and click on create button
2. u will get a popup select the 3rd radio button(ToC)
3 Give the decsription of the Tp
4. u will get anext screen here in menu select request
task->object lise ->Include object (new screen) here u select radio button freely selet obkect -> then new screen then selected the radio button selected objet. Here u give ur object and those object will be store in the created request then u can transport
Regard
Anees Ahned -
9I: How can get the names of all objects in a package header? [RESOLVED]
Is there a way to get the names fo all objects (function, procedures) from package header
select * from user_objects only gives the the header name, I need the object in the header.
John
Message was edited by:
johnminkjanHere is an example with dbms_output package!
SQL> select owner, object_name,procedure_name from all_procedures
2 where object_name='DBMS_OUTPUT';
OWNER OBJECT_NAME PROCEDURE_NAME
SYS DBMS_OUTPUT GET_LINES
SYS DBMS_OUTPUT GET_LINE
SYS DBMS_OUTPUT NEW_LINE
SYS DBMS_OUTPUT PUT_LINE
SYS DBMS_OUTPUT PUT_LINE
SYS DBMS_OUTPUT PUT
SYS DBMS_OUTPUT PUT
SYS DBMS_OUTPUT DISABLE
SYS DBMS_OUTPUT ENABLE
9 rows selected.
"or"
SQL> desc dbms_output -
How to copy all objects (incl. joins) from a BM into another existing BM
Hello, i'm a regular viewer of this forum and now i have one issue that looks simple but i cannot resolve it.
To make it less complex let's say we have a business layer with two business models (e.g. CIS-Finance and CIS-Logistics). For each BM we have a seperate subject area in the presentation layer.
Each BM has unique objects, no object (like dimension time) is appearing in both BM's.
Now there is a business requirements to have a 'mega' model, that is one extra BM that is combining both BM's. Let says we want to merge both model into one new big model.
To achieve this I did the following:
1) Duplicate CIS-Finance to CIS-All (using right mouse click on BM and click duplicate and change the name of duplicated BM to CIS-All)
2) Then I select all objects in CIS-Logistics and copy all these objects and paste them into the new BM CIS-All.
All selected objects were copied into the BM but the logical joins are not copied as well the content level information of the source tables.
Is there a way to copy also this information (logical joins and content info), or do you suggest another approach to achieve this goal?
Thanks, Benwhat i did:
1) i copied the original rpd to rpd2
1) in the original rpd, i duplicated CIS-Finance to CIS-Logistics (so I have the same name for the BM to where i want to copy to)
2) in the rpd2 i selected all objects in BM CIS-Logistics
3) I pasted all objects to rpd BM CIS-Logistics (so BM has same name)
unfortunately it doesn't work, all objects are copied but not the joins and content.
You suggest UDML, can you be a little bit more specific? I searched the internet, found out what UDML is, but I cannot map it to what I want.
Thanks. -
Selecting all objects at once to move over in Timeline
Is there a way in Motion to select objects in a timeline to the right of a particular object, all at once in order to push them over to make room for an insert.
(Like you can in FCP)?Hi,
If you have placed all objects within a layer, you could simply select the layer and then Drag it to where you want in the TimeLine.
At least that is how I did it with some of my stuff. I oranise everything into layers, and then I can move the layers in the TimeLine.
Or isn't that what you needed ?
Regards,
Stefaan -
Key focus is not visible for all objects when tabbing
I'm using LabView 5.1.
The key focus is not visible for all objects when tabbing through a "disabled and grayed-out" object.
For example, let's say I create a panel with 3 buttons. If I create a "disabled" attribute for button 2 and assign the value "2" (disabled and grayed-out) to it. When I will run this VI, the key navigation will go through button 1 and button 3 (skipping button 2 as expected) but the key focus on button 3 will not be visible.
Is this a bug with LabView or am I doing something wrong ?Hi Ben,
Don't worry, time is not an issue... I'm posting an example of a VI with the problem I described. I noticed that the problem occurs only with "dialog buttons".
When you have time, let me know if you see the same behavior. If you do, I will report the problem to National Instrument.
Thanks for your time !
BigBen
Attachments:
3buttons.vi 22 KB
Maybe you are looking for
-
Since the latest update to Firefox, I can no longer view videos on my PC. They start, play for a few seconds, then stop and repeat this process over and over again. I have a high speed internet connection and never had this problem until this past Th
-
I have a small office (10 computers with five users) that have a Windows 2003 server that has a corrupted AD. Their 2003 server R2 is essentially a file server and provides authentication. They purchased a new Dell 2012 R2 server. It seems easier
-
Adobe Flash Player Installer repeatedly giving a "Download Timeout" error
Adobe Flash Player 11.5.502.135 Multiple attempts to download and install on Dec 15 and Dec 16, 2012 Windows 7 Version 6.1 Firefox 17.0.1 The installers hangs at 0% for about 10 secs, jumps to 7% and hangs there for 5 to 10 seconds, then jumps to 47%
-
Hi Colleagues, I want to know how do we relate a shopping carts to the workflows created for it. Example: When i create a shopping cart, an entry is created in CRMD_ORDERADM_H and workflows are created. Can you tell me which table to check the workf
-
Greetings Experts, I am seeking some guidance in transporting an InfoSet Query that was created in the DEV system. Here are the steps I followed to create the query in the Standard Area: 1. SQ03 - Create user group. 2. SQ02 - Create InfoSet. 3. S