Oracle Cloud Infrastructure Documentation

Create an Activity Auditing Job

You can create an Activity Auditing job for one or more target databases at the same time.

To create an Activity Auditing job for a target database:
  1. Click the Home tab, and then click Activity Auditing.
  2. (Optional) If you haven't granted the Activity Auditing roles on your target database, do the following:
    1. If your target database is a DB system, click Download Privilege Script, download the dscs_privileges.sql script to your local computer, and then run the script on your target database.
    2. If your target database is an Autonomous Database, run the DS_TARGET_UTIL PL/SQL package on your Autonomous Database.
  3. Select the check box for the target database that you want to audit.
    Only target databases to which you have access are listed.
    You can select multiple target databases.
  4. If your target database is not listed, click Register and register your database.
  5. Click Continue.
    The Retrieve Audit Policies page is displayed.
  6. Select the check box for your target database, and then click Retrieve.
  7. Wait until the Retrieval Status column displays a check mark.
    A check mark indicates that the audit policies are successfully retrieved from your target database.
    You need to successfully retrieve audit policies for your target database at least once before you can provision audit policies on your target database.
  8. Click Continue.
    The Review and Provision Audit and Alert Policies page is displayed.
  9. Review the current audit configuration for the target database.
  10. To modify the audit policy configuration, do the following:
    1. Click your target database's name.
      The Audit Policies tab in the Edit Policies dialog box is displayed.
    2. (Optional) Select or deselect one or more categories provided by Oracle Data Safe.
    3. (Optional) Select or deselect the compliance policy based on the Center of Internet Security (CIS) recommendation from Oracle.
    4. (Optional) Select or deselect one or more custom or Oracle predefined audit policies.
  11. To modify the alert policy configuration, do the following:
    1. Click the Alert Policies tab.
    2. Select or deselect one or more alert policies.
  12. Click Provision.
    You are returned to the Review and Provision Audit and Alert Policies page.
  13. Review the audit and alert policy configuration, and then click Continue.
  14. Register an audit trail for the target database:
    Note

    If your target database is an Autonomous Database, the UNIFIED_AUDIT_TRAIL is automatically selected for you and you can skip this step.
    1. Select the check box for the target database.
    2. Click Add.
      The Register Audit Trail dialog box is displayed.
    3. Select one or more trail locations.
    4. Enable or disable the auto purge feature by moving the slider to the right (ON) or left (OFF).
    5. Click Register.
  15. To enable or disable the auto purge for your target database, move the slider in the Auto Purge Trail column to the right (ON) or left (OFF).
  16. Click Start to start audit collection.
  17. Click Done.
    The Audit Trails page is displayed.
  18. View the Collection State column.
    While audit data is being collected, the Collection State column states COLLECTING. When the audit data is collected, the column states IDLE.