Auditing objects v16
Object-level auditing allows selective auditing of objects for specific data manipulation language (DML) statements, such as
INSERT, on a given table. Object-level auditing also lets you include or exclude specific groups by specifying
(-) with the
edb_audit_statement parameter. For more information about DML statements, see Selecting SQL statements to audit.
Use the following syntax to specify an
edb_audit_statement parameter value for
In this example,
edb_audit_statement are set with the following non-default values:
The SQL statements invoked by the
DELETE commands are audited.
The following is the database session that occurs:
edb_audit_statement parameter to
'select@low_security@high_security, insert@high_security-low_security, update-low_security@high_security, delete@low_security-high_security' for the
enterprisedb user and
edb database allows auditing of
DELETE statements including
(@) and excluding
- for a group in the audit log file.
For a table in the log file:
SELECTstatements of the
high_securityand excludes the insert statements of
high_securityand excludes the update statements of the
low_securityand excludes the delete statements of
high_securityaudit group for a table in the log file.
The resulting audit log file contains the following. (Each audit log entry was split and displays across multiple lines. A blank line was inserted between the audit log entries for visual clarity.)
- On this page