I’ve enabled auditing for the table HR.CANDIDATES with the following settings:
ALTER SYSTEM SET audit_trail = DB, EXTENDED SCOPE = SPFILE;
AUDIT SELECT, INSERT, UPDATE, DELETE ON hr.candidates BY ACCESS;
When users AMY and MARK select data from HR.CANDIDATES, I can see the records in DBA_AUDIT_TRAIL.
However, I’m not sure how to properly use the Audit features in Toad — such as Audit Objects, Audit SQL/Sys Privs, and Audit Policies.
I always see the message “Auditing is not enabled” under Audit Objects.
Could you please explain how to use these audit features in Toad?
For example, where can I view the records showing that AMY and MARK have executed SELECT statements on the table?
The User Guide doesn’t provide much detail, so a simple example would be very helpful.
The message "Auditing is not enabled" appears when auditing is disabled in the database. This is the query we run to find that setting.
select value
from v$parameter
where name = 'audit_trail';
The result can be NONE, DB, TRUE, DB_EXTENDED, or OS. Here is the Oracle documentation about that parameter. AUDIT_TRAIL
Did you restart the database after changing the audit_trail parameter? I think that is needed for the query result to change.
You can see in your last screenshot the effect of AUDIT SELECT, INSERT, UPDATE, DELETE ON hr.candidates BY ACCESS; (where you see 'A/A' for that table)
I guess you know, but maybe not - the above (and windows/settings in Toad that you are looking at) is what Oracle calls "Traditional Auditing". Oracle is moving away from Traditional Auditing in favor of the new Unified Auditing.
You probably have some unified audit policies already set up and working on your database. You might want use/create some of those instead of traditional auditing.
