When audit_trail = XML, EXTENDED, it's unable to audit non-sydba user
Hi,
I have enabled auditing on my oracle 10gR2 database. window 2003 server.
I would like to audit sydba and non-sydba user the same time.
After viewing the oracle official document,I know using the following audit approach is better:
It has following parameters set for auditing:
Show parameter audit
audit_file_dest = D:\ORACLE\PRODUCT\10.2.0\ADMIN\db\adump
audit_sys_operations = TRUE
audit_trail = XML,EXTENDED
Then I restart the database correctly.
In sys to create a user U_user,and then landing the U_user in U_user to create a table T_table,and then login to the sys
and I enable auditing on the user u_test:
AUDIT ALL on U_test.T_table BY ACCESS;
AUDIT SELECT, UPDATE, INSERT,DELETE on U_test.T_table BY ACCESS;
Then I login to the U_test,and do some operations like:insert,update,delete for T_table.
Then the Problem is coming.
When I select * from v$xml_audit_trail or select * from DBA_common_audit_trail,these rows only contains sys user audit information.and not contain I have just those operations for U_test.T_table
At the same time,I found that the xml file generated and Including those operating about U_test.T_table.
But v$xml_audit_trail and DBA_common_audit_trai don't display the audit information about U_test.T_table.
Why?
BTW I found that the forum had a similar problem, but there is no good solution.
Can any body help me?
james