D Audit Record Fields
Audit record fields capture data such as target, service, and policy names.
Table D-1 lists the fields in an Oracle AVDF audit record.
Table D-1 Audit Record Fields
Audit Record Field | Description | Column Type |
---|---|---|
Target Name |
Target system secured by AVDF |
|
Target Type |
Type of target, for example, Microsoft SQL Server, IBM DB2 etc. |
|
Service Name |
Target service used to perform this event |
|
Policy Name |
Name of the policy when the event was recorded |
|
Policy Name From Oracle AVDF 20.3 and later |
Name of the policy which caused the event |
|
Event Server Time |
Time of entry of the audit record in the Audit Vault Server |
Timestamp with local timezone |
Event Time |
Time of event occurrence |
Timestamp with local timezone |
User Name |
Target user that performed the event |
|
Event Status |
Status of completion of the event |
|
Error Code |
Error number on event failure |
|
Error Message |
Error message on event failure |
|
Event Name |
Name of the event as recognized by the target |
|
Action Taken |
Action taken on the command |
|
Threat Severity |
Threat severity assigned to the command |
|
Log Cause |
Reason for logging the event |
|
Object |
Object affected by event |
|
Object Type |
Type of target object, for example, Package, Type, Table |
|
Object Owner |
Owner of target object |
|
Terminal |
Name of the terminal (for example, Unix terminal) that was the source of the event |
|
OS User Name |
Operating system login name of the target user causing the event |
|
Client Host Name |
Name of the host machine |
|
Client ID |
Client identifier of the user whose actions were audited |
|
Client IP |
IP address of the Client Host |
|
Network Connection |
Description of the network connection |
|
Client Program |
Name of program on Client Host that issued command |
|
Command Text |
Command statement issued by target user |
|
Command Param |
Parameters associated with command text |
|
Extension |
Additional detailed information about the audited event |
|
Original Content |
Audit record generated by target |
|
Command Class |
Class of command issued by target user that caused the event |
|
Audit Type |
Type of auditing (Oracle AVDF 20.3 and later) |
|
Application Context |
Application context information (Oracle AVDF 20.3 and later) |
|