Audit Users with "DROP ANY TABLE" Privilege: Example Client Event Trigger
(Doc ID 197598.1)
Last updated on FEBRUARY 01, 2022
Applies to:Oracle Database Backup Service - Version N/A and later
Oracle Database Exadata Express Cloud Service - Version N/A and later
Oracle Database Cloud Exadata Service - Version N/A and later
Oracle Database Cloud Service - Version N/A and later
Oracle Database - Enterprise Edition - Version 188.8.131.52 and later
Information in this document applies to any platform.
This article explains how to track/audit the tables being dropped by a user who has the "DROP ANY TABLE" privilege.
There are many situations where a specific operation on a database requires auditing. One such operation is to audit the USER who has "DROP ANY TABLE" privilege. A user with "DROP ANY TABLE" privilege can drop the tables owned by other users in that database. Oracle Client events provides a mechanism through which you can audit such operations. When the events are detected by the server, the trigger mechanism executes the action specified in the trigger. The trigger will not fire for the SYSDBA users or for the users granted the ADMINISTER DATABASE TRIGGER privilege.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!