DBA_COMMON_AUDIT_TRAIL
displays all standard and fine-grained audit trail entries, mandatory and SYS
audit records written in XML format.
Note:
This view is populated only in an Oracle Database where unified auditing is not enabled. When unified auditing is enabled in Oracle Database, the audit records are populated in the new audit trail and can be viewed from UNIFIED_AUDIT_TRAIL
.
See Oracle Database Security Guide for more information about unified auditing.
See Oracle Database Upgrade Guide for more information about migrating to unified auditing.
Column | Datatype | NULL | Description |
---|---|---|---|
|
|
Audit trail type:
|
|
|
|
Numeric ID for the Oracle session |
|
|
|
Proxy session serial number, if an enterprise user has logged in through the proxy mechanism |
|
|
|
Numeric ID for the statement run; a statement may cause multiple audit records |
|
|
|
Numeric ID for the audit trail entry in the session |
|
|
|
Timestamp of the audited operation (timestamp of user login for entries created by |
|
|
|
Global user identifier for the user, if the user has logged in as an enterprise user |
|
|
|
Database user name of the user whose actions were audited |
|
|
|
Client identifier in the Oracle session |
|
|
|
Application execution context identifier |
|
|
|
User external name |
|
|
|
Operating system login user name of the user whose actions were audited |
|
|
|
Client host machine name |
|
|
|
Operating system process identifier of the Oracle process |
|
|
|
Identifier of the user's terminal |
|
|
|
Instance number as specified by the |
|
|
|
Owner of the audited object |
|
|
|
Name of the object affected by the action |
|
|
|
Name of the Fine-Grained Auditing Policy |
|
|
|
Owner of the object named in the |
|
|
|
New name of the object after a |
|
|
|
Numeric action type code. The corresponding name of the action type is in the |
|
|
|
Name of the action type corresponding to the numeric code in the |
|
|
|
Auditing option set with the |
|
|
|
Transaction identifier of the transaction in which the object was accessed or modified |
|
|
|
Oracle error code generated by the action ( |
|
|
|
System change number (SCN) of the query |
|
|
|
Text comment on the audit trail entry, providing more information about the statement audited Also indicates how the user was authenticated:
|
|
|
|
Bind variable data of the query |
|
|
|
SQL text of the query |
|
|
|
Object privileges granted or revoked by a |
|
|
|
System privileges granted or revoked by a |
|
|
|
Indicates whether the role or system privilege was granted with the |
|
|
|
Operating privilege ( |
|
|
|
Name of the grantee specified in a |
|
|
|
System privilege used to execute the action |
|
|
|
Session summary (a string of 16 characters, one for each action type in the order
|
|
|
|
Timestamp of user log off |
|
|
|
Number of logical reads in the session |
|
|
|
Number of physical reads in the session |
|
|
|
Number of logical writes for the session |
|
|
|
Number of deadlocks detected during the session |
|
|
|
Amount of CPU time used by the Oracle session |
|
|
|
Name of the edition containing the audited object |
|
|
|
Database identifier of the audited database |
Note:
The SQL_BIND
and SQL_TEXT
columns are only populated if the AUDIT_TRAIL
initialization parameter is set to db, extended
or xml, extended
or if the AUDIT_SYS_OPERATIONS
initialization parameter is set to TRUE
.
See Also: