Hi All,
I have set up auditing on one of our databases as per compliance requirement.
I am auditing sys operations which are written to the Event Log on the Windows server.
I have a filter log set up filtering on Event ID 34.
Unfortunately there appears to be a lot of messages regarding backups. I'm trying to create a process so that it would be easy to spot sysdba logins and actions.
Loads of messages about internal commands relating to what Datapump is doing does not seem helpful to me.
Has anyone come across a good way of being able to audit sys operations without capturing 20+ messages for a backup in the event log on Windows?
Thanks
Phil