Oracle dbms_fga tips

Home
E-mail Us
Oracle Articles
New Oracle Articles

Oracle Training
Oracle Tips
Oracle Forum
Class Catalog

Remote DBA
Oracle Tuning
Emergency 911
RAC Support
Apps Support
Analysis
Design
Implementation
Oracle Support

SQL Tuning
Security
Oracle UNIX
Oracle Linux
Monitoring
Remote support
Remote plans
Remote services
Application Server
Applications
Oracle Forms
Oracle Portal
App Upgrades
SQL Server
Oracle Concepts
Software Support
Remote Support
Development
Implementation

Consulting Staff
Consulting Prices
Help Wanted!

Oracle Posters
Oracle Books
Oracle Scripts
Ion
Excel-DB

Don Burleson Blog

Oracle dbms_fga tips

Oracle Database Tips by Donald Burleson

Oracle dbms_fga

Starting with Oracle 9i you'll see a more sophisticated auditing mechanism using the dbms_fga package. The dbms_fga package allows you to specify the auditing rules for a particular column of a table and report on anyone whose queries match the criteria.
Let's look at a simple example of dbms_fga:
connect pubs/pubs

exec dbms_fga.drop_policy( -
object_schema => 'PUBS', -
object_name => 'BOOK', -
policy_name => 'EXPENSIVE_BOOKS' -
);

begin
dbms_fga.add_policy(
object_schema => 'PUBS',
object_name => 'BOOK',
policy_name => 'EXPENSIVE_BOOKS',
audit_condition => 'BOOK_RETAIL_PRICE>=50',
audit_column => 'BOOK_TITLE',
handler_schema => null,
handler_module => null,
enable => true
);
end;
/

Description of the DBMS_FGA package:
PROCEDURE DBMS_FGA.ADD_POLICY
Argument Name                  Type                    In/Out Default?
------------------------------ ----------------------- ------ --------
OBJECT_SCHEMA                  VARCHAR2                IN     DEFAULT
OBJECT_NAME                    VARCHAR2                IN
POLICY_NAME                    VARCHAR2                IN
AUDIT_CONDITION                VARCHAR2                IN     DEFAULT
AUDIT_COLUMN                   VARCHAR2                IN     DEFAULT
HANDLER_SCHEMA                 VARCHAR2                IN     DEFAULT
HANDLER_MODULE                 VARCHAR2                IN     DEFAULT
ENABLE                         BOOLEAN                 IN     DEFAULT
STATEMENT_TYPES                VARCHAR2                IN     DEFAULT
AUDIT_TRAIL                    BINARY_INTEGER          IN     DEFAULT
AUDIT_COLUMN_OPTS              BINARY_INTEGER          IN     DEFAULT

PROCEDURE DBMS_FGA.DISABLE_POLICY
Argument Name                  Type                    In/Out Default?
------------------------------ ----------------------- ------ --------
OBJECT_SCHEMA                  VARCHAR2                IN     DEFAULT
OBJECT_NAME                    VARCHAR2                IN
POLICY_NAME                    VARCHAR2                IN

PROCEDURE DBMS_FGA.DROP_POLICY
Argument Name                  Type                    In/Out Default?
------------------------------ ----------------------- ------ --------
OBJECT_SCHEMA                  VARCHAR2                IN     DEFAULT
OBJECT_NAME                    VARCHAR2                IN
POLICY_NAME                    VARCHAR2                IN

PROCEDURE DBMS_FGA.ENABLE_POLICY
Argument Name                  Type                    In/Out Default?
------------------------------ ----------------------- ------ --------
OBJECT_SCHEMA                  VARCHAR2                IN     DEFAULT
OBJECT_NAME                    VARCHAR2                IN
POLICY_NAME                    VARCHAR2                IN
ENABLE                         BOOLEAN                 IN     DEFAULT

For more information on the DBMS_FGA package, see the links below:

Advanced Oracle Utilities: The Definitive Reference by Rampant TechPress is written by top Oracle database experts (Bert Scalzo, Donald Burleson, and Steve Callan).

Buy direct from the publisher and save 30%!

��

Oracle Security the dbms_fga Package

Oracle Privacy Security Fine Grained Auditing dbms_fga.add_policy

Oracle Privacy Security Fine Grained Auditing dbms_fga.drop_policy