eTRM uses javascript that opens and focuses a separate window to display reports. Your browser does not appear to support javascript. This should not prevent you from using eTRM but it does mean the window focus feature will not work. Please check the contents of other windows on your desktop if you click on a link that does not appear to do anything.

DBA Data [Home] [Help] [Dependency Information]

VIEW: SYS.USER_AUDIT_TRAIL

Object Details

Object Name:	USER_AUDIT_TRAIL
Object Type:	VIEW
Owner:	SYS
Subobject Name:
Status:	VALID

Audit trail entries relevant to the user

[View Source]

Columns

Name	Datatype	Length	Mandatory	Comments
OS_USERNAME	VARCHAR2	(255)		Operating System logon user name of the user whose actions were audited
USERNAME	VARCHAR2	(128)		Name (not ID number) of the user whose actions were audited
USERHOST	VARCHAR2	(128)		Numeric instance ID for the Oracle instance from which the user is accessing the database. Used only in environments with distributed file systems and shared database files (e.g., clustered Oracle on DEC VAX/VMS clusters)
TERMINAL	VARCHAR2	(255)		Identifier for the user's terminal
TIMESTAMP	DATE			Date/Time of the creation of the audit trail entry (Date/Time of the user's logon for entries created by AUDIT SESSION) in session's time zone
OWNER	VARCHAR2	(128)		Creator of object affected by the action
OBJ_NAME	VARCHAR2	(128)		Name of the object affected by the action
ACTION	NUMBER		Yes	Numeric action type code. The corresponding name of the action type (CREATE TABLE, INSERT, etc.) is in the column ACTION_NAME
ACTION_NAME	VARCHAR2	(28)		Name of the action type corresponding to the numeric code in ACTION
NEW_OWNER	VARCHAR2	(128)		The owner of the object named in the NEW_NAME column
NEW_NAME	VARCHAR2	(128)		New name of object after RENAME, or name of underlying object (e.g. CREATE INDEX owner.obj_name ON new_owner.new_name)
OBJ_PRIVILEGE	VARCHAR2	(16)		Object privileges granted/revoked by a GRANT/REVOKE statement
SYS_PRIVILEGE	VARCHAR2	(40)		System privileges granted/revoked by a GRANT/REVOKE statement
ADMIN_OPTION	VARCHAR2	(1)		If role/sys_priv was granted WITH ADMIN OPTON, A/- or WITH DELEGATE OPTION, D/-
GRANTEE	VARCHAR2	(128)		The name of the grantee specified in a GRANT/REVOKE statement
AUDIT_OPTION	VARCHAR2	(40)		Auditing option set with the audit statement
SES_ACTIONS	VARCHAR2	(19)		Session summary. A string of 12 characters, one for each action type, in thisorder: Alter, Audit, Comment, Delete, Grant, Index, Insert, Lock, Rename, Select, Update, Flashback. Values: "-" = None, "S" = Success, "F" = Failure, "B" = Both
LOGOFF_TIME	DATE			Timestamp for user logoff
LOGOFF_LREAD	NUMBER			Logical reads for the session
LOGOFF_PREAD	NUMBER			Physical reads for the session
LOGOFF_LWRITE	NUMBER			Logical writes for the session
LOGOFF_DLOCK	VARCHAR2	(40)		Deadlocks detected during the session
COMMENT_TEXT	VARCHAR2	(4000)		Text comment on the audit trail entry. Also indicates how the user was authenticated. The method can be one of the following: 1. "DATABASE" - authentication was done by password. 2. "NETWORK" - authentication was done by Net8 or the Advanced Networking Option. 3. "PROXY" - the client was authenticated by another user. The name of the proxy user follows the method type.
SESSIONID	NUMBER		Yes	Numeric ID for each Oracle session
ENTRYID	NUMBER		Yes	Numeric ID for each audit trail entry in the session
STATEMENTID	NUMBER		Yes	Numeric ID for each statement run (a statement may cause many actions)
RETURNCODE	NUMBER		Yes	Oracle error code generated by the action. Zero if the action succeeded
PRIV_USED	VARCHAR2	(40)		System privilege used to execute the action
CLIENT_ID	VARCHAR2	(128)		Client identifier in each Oracle session
ECONTEXT_ID	VARCHAR2	(64)		Execution Context Identifier for each action
SESSION_CPU	NUMBER			Amount of cpu time used by each Oracle session
EXTENDED_TIMESTAMP	TIMESTAMP(6) WITH TIME ZONE	(20)		Timestamp of the creation of audit trail entry (Timestamp of the user's logon for entries created by AUDIT SESSION) in session's time zone
PROXY_SESSIONID	NUMBER			Proxy session serial number, if enterprise user has logged through proxy mechanism
GLOBAL_UID	VARCHAR2	(32)		Global user identifier for the user, if the user had logged in as enterprise user
INSTANCE_NUMBER	NUMBER			Instance number as specified in the initialization parameter file 'init.ora'
OS_PROCESS	VARCHAR2	(16)		Operating System process identifier of the Oracle server process
TRANSACTIONID	RAW	(8)		Transaction identifier of the transaction in which the object is accessed or modified
SCN	NUMBER			SCN (System Change Number) of the query
SQL_BIND	NVARCHAR2	(4000)		Bind variable data of the query
SQL_TEXT	NVARCHAR2	(4000)		SQL text of the query
OBJ_EDITION_NAME	VARCHAR2	(128)		Edition containing audited object
DBID	NUMBER			Database Identifier of the audited database

Query Text

Cut, paste (and edit) the following text to query this object:


SELECT OS_USERNAME
,      USERNAME
,      USERHOST
,      TERMINAL
,      TIMESTAMP
,      OWNER
,      OBJ_NAME
,      ACTION
,      ACTION_NAME
,      NEW_OWNER
,      NEW_NAME
,      OBJ_PRIVILEGE
,      SYS_PRIVILEGE
,      ADMIN_OPTION
,      GRANTEE
,      AUDIT_OPTION
,      SES_ACTIONS
,      LOGOFF_TIME
,      LOGOFF_LREAD
,      LOGOFF_PREAD
,      LOGOFF_LWRITE
,      LOGOFF_DLOCK
,      COMMENT_TEXT
,      SESSIONID
,      ENTRYID
,      STATEMENTID
,      RETURNCODE
,      PRIV_USED
,      CLIENT_ID
,      ECONTEXT_ID
,      SESSION_CPU
,      EXTENDED_TIMESTAMP
,      PROXY_SESSIONID
,      GLOBAL_UID
,      INSTANCE_NUMBER
,      OS_PROCESS
,      TRANSACTIONID
,      SCN
,      SQL_BIND
,      SQL_TEXT
,      OBJ_EDITION_NAME
,      DBID
FROM SYS.USER_AUDIT_TRAIL;

Dependencies

[top of page]

SYS.USER_AUDIT_TRAIL references the following:

SYS: DBA_AUDIT_TRAIL; USER$

SYS.USER_AUDIT_TRAIL is referenced by following:

PUBLIC: USER_AUDIT_TRAIL
SYS: USER_AUDIT_OBJECT; USER_AUDIT_SESSION; USER_AUDIT_STATEMENT