Audit
Audit Object Actions at the Column Level for Tables and Views
You can create unified audit policies to audit individual columns in tables and views.
This feature enables you to configure more granular and focused audit policies, and ensures that auditing is selective enough to reduce the creation of unnecessary audit records, and effective enough to let you meet your compliance requirements.
Control Authorizations for Unified Auditing and Traditional Auditing
You can control how privileged users can grant and revoke the Oracle Database AUDIT_ADMIN
and AUDIT_VIEWER
roles by using Oracle Database Vault APIs. Database Vault blocks direct modification of the database audit tables except through the DBMS_AUDIT_MGMT
PL/SQL package by authorized users. A new mandatory default realm (Oracle Audit Realm) protects the AUDSYS
schema and audit-related objects in the SYS
schema.
This new Database Vault realms simplifies auditing database vault, consolidating the privileges required for auditing into one authorization mechanism. In addition to facilitating the granting of audit-related privileges to the user, this enhancement provides greater separation of duties for managing auditing in an Oracle Database Vault environment.