LOGON/LOGOFF ACTIONS DON'T AUDIT WHEN UNIFIED AUDIT ENABLED
(Doc ID 2435456.1)
Last updated on JULY 20, 2024
Applies to:
Oracle Database - Enterprise Edition - Version 12.1.0.2 and laterInformation in this document applies to any platform.
Goal
In pure Unified Auditing mode,LOGON/LOGOFF actions don't audit when unified audit enabled from 12.1.0.2.
Since 99.9% of unified audit records in the EM instance is for LOGON and LOGOFF, from 12.1.0.2 remove LOGON and LOGOFF actions aduit from ORA_SECURECONFIG.
You can find the detail of ORA_SECURECONFIG by the follow SQL:
※ Apart from removing LOGON and LOGOFF actions from existing ORA_SECURECONFIG audit policy, this txn creates ORA_LOGON_FAILURES audit policy.
The new policy ORA_LOGON_FAILURES is enabled for FAILURES (ie, Logon Failures) from all users.
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Solution |