Unable to provision fga audit policy with sys_context function in the condition
(Doc ID 2643318.1)
Last updated on SEPTEMBER 26, 2024
Applies to:
Oracle Database Cloud Exadata Service - Version N/A and laterOracle Cloud Infrastructure - Exadata Cloud Service - Version N/A and later
Gen 1 Exadata Cloud at Customer (Oracle Exadata Database Cloud Machine) - Version N/A and later
Gen 2 Exadata Cloud at Customer - Version N/A and later
Oracle Audit Vault and Database Firewall - Version 12.2.0.0 and later
Information in this document applies to any platform.
Symptoms
Trying to create a FGA audit policy with sys_context function in condition from AVS Audit Settings.
Provisioning fails or the FGA policy does not work properly. There are two symptoms depending on the conditions.
From Audit Settings in AVS console, create Fine Grained Audit Settings
Audit Trail => Database
Secured Target Schema => <username>
Secured Target Object => <tablename>
Statements => SELECT
Conditions =>
case 1
-------
If "Conditions" is the following, provisioning is completed. However,
executing the target SQL raises ORA-28112.
SYS_CONTEXT( ''USERENV'',''MODULE'' ) != ''SQL*Plus''
select * from <tablename>;
ORA-28112; failed to execute policy function
Case 2
------
If "Conditions" is the following, provisioning failed with the following error.
"Export Process Error: ORA-6502:"
SYS_CONTEXT( 'USERENV','MODULE' ) != ''SQL*Plus''
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |
References |