Skip to Content
author's profile photo Former Member
Former Member

Oracle Database Auditing/Logging

Im working in a banking environment. There is a banking system that runs on Oracle version 9.2.0.4. The connection to the database is as below:

1000 Users----


>Application -


>Database

There are about 1000 users that logon to the application. All their activities are logged by the application. However, the application connects to the database via a user called SYSTEM. There a VERY high volumes of transactions passed onto the database generated by the users.

Now, there are DBAs that access the database directly and not through the application. Is there a way i can audit or log all their activity such as changing records, deleting appending etc without logging changes to the database that come from the users? We tried logging/auditing that but it also captured all the updates to the database that were being made by the users through the application (the very many transactions) and this slowed the system down drastically. Is there a way we can audit/log activity of just the people (DBA) that log directly to the database? Please assist urgently. Without their logging, there is a great risk of fraud as they can alter data directly.

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

4 Answers

  • Posted on Nov 07, 2008 at 09:28 AM

    Im working in a banking environment. There is a banking system that runs on Oracle version 9.2.0.4. The connection to the database is as below:

    1000 Users----

    -


    >Application -

    -


    >Database

    There are about 1000 users that logon to the application. All their activities are logged by the application. However, the application connects to the database via a user called SYSTEM. There a VERY high volumes of transactions passed onto the database generated by the users.

    Is that application somehow SAP related?

    From a logical point of view there is no possibility to make a difference between "dba using system" and "user using system" - how should the system distinguish that?

    It´s a VERY bad application design using the system user to run.

    Markus

    Add a comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Nov 07, 2008 at 12:26 PM

    Hi

    Oracle auditing can be enabled for users who are accessing the system.

    A basic guide to auditing can be found at

    http://www.oracle-base.com/articles/10g/Auditing_10gR2.php

    You can use various options to set it up for users accessing the Database either from the application or directly into the Database.

    Rishi

    Add a comment
    10|10000 characters needed characters exceeded

  • Posted on Nov 07, 2008 at 12:40 PM

    SAP does not uses Oracle user SYSTEM, it uses one of these users:

    SAPR3

    SAPSR3

    SAP[SID]

    OPS$ users

    that is it.

    Again, you are asking a question that do not seem to be related to SAP. What SAP product are you using?

    Add a comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Nov 07, 2008 at 02:44 PM

    If you look at the Program column in v$session view, it shows what type of program is being used to connect to the database.

    I am sure the Program has a value different than the tools used by other DBAs.

    I do not know what is the value for the Program if the user connects to the database. Either you can audit all the connections other than the application's Program Name or you can monitor program like SQLPLUS/TOAD/etc/etc.

    Hope it helps

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.