My Oracle Support Banner

Audit of ALTER ANY TABLE , DROP ANY TABLE System privilege for SYS user (Doc ID 2787945.1)

Last updated on AUGUST 18, 2021

Applies to:

Oracle Database - Enterprise Edition - Version 12.1.0.2 and later
Information in this document applies to any platform.

Symptoms

Applying the policy ORA_SECURECONFIG to SYS:
SQL> audit policy ORA_SECURECONFIG by SYS;

Show enabled policies:
USER_NAME  POLICY_NAME ENABLED ENABLED_OPTION ENTITY_NAME ENTITY_TYPE
SUCCESS FAILURE
---------- -------------------- ------- -------------- -----------
SYS    ORA_SECURECONFIG BY BY USER        SYS    USER        YES     YES


The audit trail still does not show ALTER TABLE and DROP TABLE statements issued by SYS.

The use of alter any table, drop any table system privileges were not getting audited for SYS user.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.