LOGON/LOGOFF ACTIONS DON'T AUDIT WHEN UNIFIED AUDIT ENABLED
(Doc ID 2435456.1)
Last updated on APRIL 06, 2020
Applies to:Oracle Database - Enterprise Edition - Version 18.104.22.168 and later
Information in this document applies to any platform.
In pure Unified Auditing mode,LOGON/LOGOFF actions don't audit when unified audit enabled from 22.214.171.124.
Since 99.9% of unified audit records in the EM instance is for LOGON and LOGOFF, from 126.96.36.199 remove LOGON and LOGOFF actions aduit from ORA_SECURECONFIG.
You can find the detail of ORA_SECURECONFIG by the follow SQL:
※ Apart from removing LOGON and LOGOFF actions from existing ORA_SECURECONFIG audit policy, this txn creates ORA_LOGON_FAILURES audit policy.
The new policy ORA_LOGON_FAILURES is enabled for FAILURES (ie, Logon Failures) from all users.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document