From the documentation:
ORA_SECURECONFIG audits the same default audit settings from Oracle Database Release 11g.
It tracks the use of a number of privileges such as ALTER ANY TABLE, GRANT ANY PRIVILEGE, and CREATE USER. The actions that it tracks include ALTER USER, CREATE ROLE, LOGON, and other commonly performed activities.
There are a couple of other policies that are not enabled by default but certainly worth auditing. These are:
Enabling these is as simple as executing the following SQL against the database as a privileged user:
AUDIT POLICY ORA_DATABASE_PARAMETER; AUDIT POLICY ORA_ACCOUNT_MGMT;
No comments:
Post a Comment