Database Reference
In-Depth Information
SQL Auditing Data Pump Jobs
To monitor and record the use of Data Pump jobs, set up auditing. As mentioned previously
Data Pump uses unified auditing.
To set up unified auditing, follow these steps:
1.
Create a named unified audit policy, which is a named group of audit settings that you
use to monitor database user activity.
2.
To create a unified audit policy, use the
SQL CREATE AUDIT POLICY
statement, and set
the
COMPONENT
clause to
DATAPUMP
.
You can audit Data Pump export (
expdp
), import (
impdp
), or both.
3.
To create a unified audit policy for Oracle Data Pump, consider this syntax:
CREATE AUDIT POLICY policy_name
ACTIONS COMPONENT=DATAPUMP { EXPORT | IMPORT | ALL };
This example shows how to audit all Oracle Data Pump import operations.
SQL> CREATE AUDIT POLICY audit_datapump_import_pol
2 ACTIONS COMPONENT=DATAPUMP IMPORT;
Audit policy created.
4.
Now that you've created the audit policy, use the
AUDIT SQL
statement to enable it for
all users:
SQL>
SQL> AUDIT POLICY audit_datapump_import_pol;
Audit succeeded.
SQL>
5.
Now you can use the
NOAUDIT SQL
statement to disable it for all users:
SQL> NOAUDIT POLICY audit_datapump_import_pol;
Noaudit succeeded.
SQL>
You can audit actions for specific users if you use the
BY
clause, followed by specific user-
names. The same applies to using
NOAUDIT
to disable an audit policy for specific users.
With all unified auditing you must have the AUDIT_ADMIN role. Data Pump is no
exception, so you'll need that role before you attempt to audit Oracle Data Pump events.
Search WWH ::
Custom Search