管理AUDIT_TRAIL初始化引數配置標準審計
Enabling or Disabling the Standard Audit Trail
You enable the standard audit trail by setting the AUDIT_TRAIL initialization
parameter. This setting determines whether to create the audit trail in the database
audit trail, write the audit activities to an operating system file, or to disable auditing.
透過開啟audit_trail引數開啟審計,這個引數決定了是否以資料庫記錄審計軌跡、以作業系統檔案記錄審計內容或是關閉審計
To enable or disable the standard audit trail, log in to SQL*Plus with administrative
privileges, and use the ALTER SYSTEM statement. Afterwards, you need to restart the
database instance
使用alter system命令開啟或關閉審計,之後,需要重啟例項。
To check the current value of the AUDIT_TRAIL parameter, use the SHOW PARAMETER
command in SQL*Plus
Example 9–1 shows how to check the AUDIT_TRAIL parameter setting.
SHOW PARAMETER AUDIT_TRAIL
NAME TYPE VALUE
------------------------------------ ----------- -------
audit_trail string DB
Example 9–2 shows how to log onto SQL*Plus, enable the standard audit trail, and
then restart the database instance.
Example 9–2 Enabling the Standard Audit Trail
CONNECT SYSTEM
Enter password: password
ALTER SYSTEM SET AUDIT_TRAIL=DB SCOPE=SPFILE;
System altered.
CONNECT SYS/AS SYSOPER
Enter password: password
SHUTDOWN
Database closed.
Database dismounted.
ORACLE instance shut down.
STARTUP
ORACLE instance started.
This example uses the SCOPE clause because the database instance had been started
using a server parameter file (SPFILE). Starting the database with a server parameter
file is the preferred way of starting a database instance. See Oracle Database
Administrator's Guide for information about creating configuring server parameter
files.
AUDIT_TRAIL enables or disables database auditing.
Values:
■ none
Disables standard auditing. This value is the default if the AUDIT_TRAIL parameter
was not set in the initialization parameter file or if you created the database using
a method other than Database Configuration Assistant. If you created the database
using Database Configuration Assistant, then the default is db.
■ os
Directs all audit records to an operating system file. Oracle recommends that you
use the os setting, particularly if you are using an ultra-secure database
configuration.
■ db
Directs audit records to the database audit trail (the SYS.AUD$ table), except for
records that are always written to the operating system audit trail. Use this setting
for a general database for manageability.
If the database was started in read-only mode with AUDIT_TRAIL set to db, then
Oracle Database internally sets AUDIT_TRAIL to os. Check the alert log for details.
■ db, extended
Performs all actions of AUDIT_TRAIL=db, and also populates the SQL bind and SQL
text CLOB-type columns of the SYS.AUD$ table, when available. These two
columns are populated only when this parameter is specified.
If the database was started in read-only mode with AUDIT_TRAIL set to db,
extended, then Oracle Database internally sets AUDIT_TRAIL to os. Check the alert
log for details.
■ xml
Writes to the operating system audit record file in XML format. Records all
elements of the AuditRecord node except Sql_Text and Sql_Bind to the operating
system XML audit file.
■ xml, extended
Performs all actions of AUDIT_TRAIL=xml, and populates the SQL bind and SQL
text CLOB-type columns of the SYS.AUD$ table, wherever possible. These columns
are populated only when this parameter is specified.
You can use the SQL AUDIT statement to set auditing options regardless of the setting
of this parameter.
可以透過表dba_audit_trail檢視審計資訊
You enable the standard audit trail by setting the AUDIT_TRAIL initialization
parameter. This setting determines whether to create the audit trail in the database
audit trail, write the audit activities to an operating system file, or to disable auditing.
To enable or disable the standard audit trail, log in to SQL*Plus with administrative
privileges, and use the ALTER SYSTEM statement. Afterwards, you need to restart the
database instance
使用alter system命令開啟或關閉審計,之後,需要重啟例項。
To check the current value of the AUDIT_TRAIL parameter, use the SHOW PARAMETER
command in SQL*Plus
Example 9–1 shows how to check the AUDIT_TRAIL parameter setting.
NAME TYPE VALUE
------------------------------------ ----------- -------
audit_trail string DB
Example 9–2 shows how to log onto SQL*Plus, enable the standard audit trail, and
then restart the database instance.
Example 9–2 Enabling the Standard Audit Trail
CONNECT SYSTEM
Enter password: password
ALTER SYSTEM SET AUDIT_TRAIL=DB SCOPE=SPFILE;
System altered.
CONNECT SYS/AS SYSOPER
Enter password: password
SHUTDOWN
Database closed.
Database dismounted.
ORACLE instance shut down.
STARTUP
ORACLE instance started.
This example uses the SCOPE clause because the database instance had been started
using a server parameter file (SPFILE). Starting the database with a server parameter
file is the preferred way of starting a database instance. See Oracle Database
Administrator's Guide for information about creating configuring server parameter
files.
AUDIT_TRAIL enables or disables database auditing.
Values:
■ none
Disables standard auditing. This value is the default if the AUDIT_TRAIL parameter
was not set in the initialization parameter file or if you created the database using
a method other than Database Configuration Assistant. If you created the database
using Database Configuration Assistant, then the default is db.
■ os
Directs all audit records to an operating system file. Oracle recommends that you
use the os setting, particularly if you are using an ultra-secure database
configuration.
■ db
Directs audit records to the database audit trail (the SYS.AUD$ table), except for
records that are always written to the operating system audit trail. Use this setting
for a general database for manageability.
If the database was started in read-only mode with AUDIT_TRAIL set to db, then
Oracle Database internally sets AUDIT_TRAIL to os. Check the alert log for details.
■ db, extended
Performs all actions of AUDIT_TRAIL=db, and also populates the SQL bind and SQL
text CLOB-type columns of the SYS.AUD$ table, when available. These two
columns are populated only when this parameter is specified.
If the database was started in read-only mode with AUDIT_TRAIL set to db,
extended, then Oracle Database internally sets AUDIT_TRAIL to os. Check the alert
log for details.
■ xml
Writes to the operating system audit record file in XML format. Records all
elements of the AuditRecord node except Sql_Text and Sql_Bind to the operating
system XML audit file.
■ xml, extended
Performs all actions of AUDIT_TRAIL=xml, and populates the SQL bind and SQL
text CLOB-type columns of the SYS.AUD$ table, wherever possible. These columns
are populated only when this parameter is specified.
You can use the SQL AUDIT statement to set auditing options regardless of the setting
of this parameter.
可以透過表dba_audit_trail檢視審計資訊
來自 “ ITPUB部落格 ” ,連結:http://blog.itpub.net/29802484/viewspace-2071918/,如需轉載,請註明出處,否則將追究法律責任。
相關文章
- FGA審計及audit_trail引數AI
- ORACLE初始化引數:AUDIT_TRAILOracleAI
- Oracle中審計引數audit_trail的討論(轉)OracleAI
- Oracle 標準審計,設定AUDIT_SYSLOG _LEVEL引數Oracle
- oracle標準審計Oracle
- 【審計】標準資料庫審計資料庫
- 10g初始化引數AUDIT_TRAIL變化(二)AI
- 10g初始化引數AUDIT_TRAIL變化(一)AI
- 標準資料審計
- 【安全】oracle 標準審計Oracle
- Oracle Database標準審計和細粒度審計功能OracleDatabase
- ORACLE資料庫標準審計Oracle資料庫
- ORACLE初始化引數的配置Oracle
- Oracle RAC初始化引數管理Oracle
- AUDIT_TRAIL設定及審計日誌清理AI
- 導庫標準引數指令碼指令碼
- 寫給 Web 開發者的深度學習教程 - 資料標準化 & 引數初始化Web深度學習
- 4.2.1.3 學習如何管理初始化引數
- oracle初始化引數Oracle
- Smarty配置(標準分析)
- 2 Day DBA-管理Oracle例項-檢視和修改初始化引數-練習:檢視和修改初始化引數Oracle
- 常用的jvm配置引數 :永久區引數配置JVM
- nginx網站標準配置Nginx網站
- 2 Day DBA-管理Oracle例項-關於初始化引數Oracle
- Oracle幾個初始化引數Oracle
- oracle 常見初始化引數Oracle
- [HotSpot VM] JVM調優的"標準引數"的各種陷阱HotSpotJVM
- 將所配置的初始化引數重置為系統預設值
- 幾個引數配置的計算公式公式
- ORACLE RAC GUARD配置引數——RAC GUARD概念和管理Oracle
- [20140529]11g下引數audit_trail的修改.txtAI
- 單據型別引數設定增加自定義引數並透過BOS標準函式呼叫型別函式
- jvm引數配置JVM
- oracle引數配置Oracle
- JavaWeb引數配置JavaWeb
- 跨鏈DeFi資管平臺X METAVERSE PRO 引領數字資產管理行業的全新標準Metaverse行業
- 恆訊科技分析短影片對伺服器引數的標準?伺服器
- 2.6.2.2 初始化引數DB_DOMAINAI