Activity Auditing provides several alert policies that you can provision on your target databases.
An alert policy defines an event in a database to monitor. Alert policies are rule-based and independent of audit policies. If an alert’s rule definition is matched (for example, an administrator fails to log in to a target database), then Oracle Data Safe raises an alert and displays it on the Alerts page.
Activity Auditing provides several alert policies that you can activate within the Activity Auditing wizard. The following table describes the alert policies.
|Predefined Alert||Severity Level||Description|
|Database Parameter Changes||Critical||Database parameter changes|
|Failed Logins by Admin User||High||Failed administrator user login attempts|
|Audit Policy Changes||High||Changes to audit configuration|
|User Creation/Deletion||Medium||Creation or deletion of users|
|User Entitlement Changes||Medium||User entitlement changes|