首批通过分布式安全可靠测评,为关键业务系统打造
审计用户操作
更新时间:2026-05-15 14:07:55
审计功能可以对指定用户的操作进行审计。
审计指定用户在所有表上成功的 DDL 操作
以
ORAAUDITOR用户登录,设置审计用户user1在所有表上成功的 DDL 操作。obclient> AUDIT TABLE BY user1 WHENEVER SUCCESSFUL;查看
DBA_AUDIT_TRAIL表中用户user1执行成功的审计记录。obclient> SELECT USERNAME,USERHOST,TIMESTAMP,SQL_TEXT FROM SYS.DBA_AUDIT_TRAIL WHERE USERNAME = 'USER1'; +----------+----------------+-----------+--------------------------------------+ | USERNAME | USERHOST | TIMESTAMP | SQL_TEXT | +----------+----------------+-----------+--------------------------------------+ | USER1 | 100.10.10.10 | 23-DEC-21 | create table tbl1(col1 int,col2 int) | | USER1 | 100.10.10.10 | 23-DEC-21 | DROP TABLE tbl1 | +----------+----------------+-----------+--------------------------------------+ 2 rows in set
审计指定用户的所有操作,包括登录退出
以
ORAAUDITOR用户登录,审计用户user1的所有操作。obclient> AUDIT ALL STATEMENTS BY user1;查看
DBA_AUDIT_TRAIL表中用户user1的审计记录。obclient> SELECT USERNAME,USERHOST,TIMESTAMP,SQL_TEXT FROM SYS.DBA_AUDIT_TRAIL WHERE USERNAME = 'USER1'; +----------+----------------+-----------+--------------------------------------+ | USERNAME | USERHOST | TIMESTAMP | SQL_TEXT | +----------+----------------+-----------+--------------------------------------+ | USER1 | 100.10.10.10 | 22-DEC-21 | CONNECT | | USER1 | 100.10.10.10 | 23-DEC-21 | DISCONNECT | | USER1 | 100.10.10.10 | 23-DEC-21 | CONNECT | | USER1 | 100.10.10.10 | 23-DEC-21 | create table tbl1(col1 int,col2 int) | | USER1 | 100.10.10.10 | 23-DEC-21 | DROP TABLE tbl1 | | USER1 | 100.10.10.10 | 23-DEC-21 | GRANT CREATE SESSION TO user2 | | USER1 | 100.10.10.10 | 23-DEC-21 | CREATE ROLE role1 | | USER1 | 100.10.10.10 | 23-DEC-21 | DROP ROLE role1 | +----------+----------------+-----------+--------------------------------------+ 8 rows in set
相关文档
有关安全审计的更多相关操作,参见: