OS_USERNAME |
VARCHAR2(255) |
|
Operating system login username of the user whose actions were audited |
USERNAME |
VARCHAR2(30) |
|
Name (not ID number) of the user whose actions were audited |
USERHOST |
VARCHAR2(2000) |
|
Numeric instance ID for the Oracle instance from which the user is accessing the database |
TERMINAL |
VARCHAR2(2000) |
|
Identifier of the user's terminal |
TIMESTAMP |
DATE |
NOT NULL |
Timestamp for the creation of the audit trail entry or login time for the CONNECT statement |
OWNER |
VARCHAR2(30) |
|
Creator of the object affected by the action |
OBJ_NAME |
VARCHAR2(128) |
|
Name of the object affected by the action |
ACTION |
NUMBER |
NOT NULL |
Numeric type code corresponding to the action |
ACTION_NAME |
VARCHAR2(27) |
|
Name of the action type corresponding to the numeric code in the ACTION column |
NEW_OWNER |
VARCHAR2(30) |
|
Owner of the object named in the NEW_NAME column |
NEW_NAME |
VARCHAR2(128) |
|
New name of an object after a RENAME or the name of the underlying object |
OBJ_PRIVILEGE |
VARCHAR2(16) |
|
Object privileges granted or revoked by a GRANT or REVOKE statement |
SYS_PRIVILEGE |
VARCHAR2(40) |
|
System privileges granted or revoked by a GRANT or REVOKE statement |
ADMIN_OPTION |
VARCHAR2(1) |
|
Signifies the role or system privilege was granted with ADMIN option |
GRANTEE |
VARCHAR2(30) |
|
Name of grantee specified in a GRANT or REVOKE statement |
AUDIT_OPTION |
VARCHAR2(40) |
|
Auditing option set with the AUDIT statement |
SES_ACTIONS |
VARCHAR2(19) |
|
Session summary (a string of 16 characters, one for each action type in the order ALTER, AUDIT, COMMENT, DELETE, GRANT, INDEX, INSERT, LOCK, RENAME, SELECT, UPDATE, REFERENCES , and EXECUTE . Positions 14, 15, and 16 are reserved for future use. The characters are: - for none, S for success, F for failure, and B for both). |
LOGOFF_TIME |
DATE |
|
Timestamp for user log off |
LOGOFF_LREAD |
NUMBER |
|
Logical reads for the session |
LOGOFF_PREAD |
NUMBER |
|
Physical reads for the session |
LOGOFF_LWRITE |
NUMBER |
|
Logical writes for the session |
LOGOFF_DLOCK |
VARCHAR2(40) |
|
Deadlocks detected during the session |
COMMENT_TEXT |
VARCHAR2(4000) |
|
Text comment on the audit trail entry, providing more information about the statement audited
Also indicates how the user was authenticated. The method can be one of the following:
DATABASE : authentication was done by password
NETWORK : authentication was done by Net8 or the Advanced Security option
PROXY : the client was authenticated by another user; the name of the proxy user follows the method type
|
SESSIONID |
NUMBER |
NOT NULL |
Numeric ID for each Oracle session |
ENTRYID |
NUMBER |
NOT NULL |
Numeric ID for each audit trail entry in the session |
STATEMENTID |
NUMBER |
NOT NULL |
Numeric ID for each statement run |
RETURNCODE |
NUMBER |
NOT NULL |
Oracle server message code generated by the action. Some useful values:
0 : the action succeeded
2004 : security violation
|
PRIV_USED |
VARCHAR2(40) |
|
System privilege used to execute the action |