|
OS_USERNAME
|
VARCHAR2(255)
|
|
Operating system login username of the user whose actions were audited
|
|
USERNAME
|
VARCHAR2(30)
|
|
Name (not ID number) of the user whose actions were audited
|
|
USERHOST
|
VARCHAR2(128)
|
|
Numeric instance ID for the Oracle instance from which the user is accessing the database. Used only in environments with distributed file systems and shared database files.
|
|
TERMINAL
|
VARCHAR2(255)
|
|
Identifier of the user's terminal
|
|
TIMESTAMP
|
DATE
|
NOT NULL
|
Timestamp for the creation of the audit trail entry or login time for the CONNECT statement
|
|
OWNER
|
VARCHAR2(30)
|
|
Creator of the object affected by the action
|
|
OBJ_NAME
|
VARCHAR2(128)
|
|
Name of the object affected by the action
|
|
ACTION
|
NUMBER
|
NOT NULL
|
Numeric action type code. The corresponding name of the action type is in the ACTION_NAME column.
|
|
ACTION_NAME
|
VARCHAR2(27)
|
|
Name of the action type corresponding to the numeric code in the ACTION column
|
|
NEW_OWNER
|
VARCHAR2(30)
|
|
Owner of the object named in the NEW_NAME column
|
|
NEW_NAME
|
VARCHAR2(128)
|
|
New name of the object after a RENAME or the name of the underlying object
|
|
OBJ_PRIVILEGE
|
VARCHAR2(16)
|
|
Object privileges granted or revoked by a GRANT or REVOKE statement
|
|
SYS_PRIVILEGE
|
VARCHAR2(40)
|
|
System privileges granted or revoked by a GRANT or REVOKE statement
|
|
ADMIN_OPTION
|
VARCHAR2(1)
|
|
Indicates whether the role or system privilege was granted with the ADMIN option
|
|
GRANTEE
|
VARCHAR2(30)
|
|
Name of the grantee specified in a GRANT or REVOKE statement
|
|
AUDIT_OPTION
|
VARCHAR2(40)
|
|
Auditing option set with the AUDIT statement
|
|
SES_ACTIONS
|
VARCHAR2(19)
|
|
Session summary (a string of 16 characters, one for each action type in the order ALTER, AUDIT, COMMENT, DELETE, GRANT, INDEX, INSERT, LOCK, RENAME, SELECT, UPDATE, REFERENCES, and EXECUTE. Positions 14, 15, and 16 are reserved for future use. The characters are:
- - NoneS - SuccessF - FailureB - Both
|
|
LOGOFF_TIME
|
DATE
|
|
Timestamp for user log off
|
|
LOGOFF_LREAD
|
NUMBER
|
|
Logical reads for the session
|
|
LOGOFF_PREAD
|
NUMBER
|
|
Physical reads for the session
|
|
LOGOFF_LWRITE
|
NUMBER
|
|
Logical writes for the session
|
|
LOGOFF_DLOCK
|
VARCHAR2(40)
|
|
Deadlocks detected during the session
|
|
COMMENT_TEXT
|
VARCHAR2(4000)
|
|
Text comment on the audit trail entry, providing more information about the statement audited
Also indicates how the user was authenticated. The method can be one of the following:
DATABASE - Authentication was done by passwordNETWORK - Authentication was done by Oracle Net Services or the Advanced Security optionPROXY - Client was authenticated by another user; the name of the proxy user follows the method type
|
|
SESSIONID
|
NUMBER
|
NOT NULL
|
Numeric ID for each Oracle session
|
|
ENTRYID
|
NUMBER
|
NOT NULL
|
Numeric ID for each audit trail entry in the session
|
|
STATEMENTID
|
NUMBER
|
NOT NULL
|
Numeric ID for each statement run
|
|
RETURNCODE
|
NUMBER
|
NOT NULL
|
Oracle error code generated by the action. Some useful values:
0 - Action succeeded2004 - Security violation
|
|
PRIV_USED
|
VARCHAR2(40)
|
|
System privilege used to execute the action
|
|
CLIENT_ID
|
VARCHAR2(64)
|
|
Client identifier in each Oracle session
|
|
SESSION_CPU
|
NUMBER
|
|
Amount of CPU time used by each Oracle session
|
