Activity Auditing provides several alert policies that you can provision on your target databases.
An alert policy defines an event in a database to monitor. Alert policies are rule-based and independent of audit policies. If an alert’s rule definition is matched (for example, an administrator fails to log in to a target database), then Oracle Data Safe raises an alert and displays it on the Alerts page.
Activity Auditing provides several alert policies that you can activate within the Activity Auditing wizard. The following table describes the alert policies.
|Predefined Alert||Severity Level||Description|
|Failed Logins by Admin User||Critical||Failed admin user login attempts|
|Audit Policy Changes||High||Changes to audit configuration|
|Database Parameter Changes||High||Database parameter changes|
|User Entitlement Changes||Medium||User entitlement changes|
|User Creation/Deletion||Medium||Creation or deletion of users|