Audit Users with "DROP ANY TABLE" Privilege: Example Client Event Trigger (Doc ID 197598.1)

Last updated on FEBRUARY 01, 2022

Applies to:

Oracle Database Backup Service - Version N/A and later
Oracle Database Exadata Express Cloud Service - Version N/A and later
Oracle Database Cloud Exadata Service - Version N/A and later
Oracle Database Cloud Service - Version N/A and later
Oracle Database - Enterprise Edition - Version 9.2.0.1 and later
Information in this document applies to any platform.

Purpose

This article explains how to track/audit the tables being dropped by a user who has the "DROP ANY TABLE" privilege.

Scope

There are many situations where a specific operation on a database requires auditing. One such operation is to audit the USER who has "DROP ANY TABLE" privilege. A user with "DROP ANY TABLE" privilege can drop the tables owned by other users in that database. Oracle Client events provides a mechanism through which you can audit such operations. When the events are detected by the server, the trigger mechanism executes the action specified in the trigger. The trigger will not fire for the SYSDBA users or for the users granted the ADMINISTER DATABASE TRIGGER privilege.

Details

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Audit Users with "DROP ANY TABLE" Privilege: Example Client Event Trigger (Doc ID 197598.1)

Applies to:

Purpose

Scope

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!