RE: Access and password changes
- From: <Joel.Patterson@xxxxxxxxxxx>
- To: <rgoulet@xxxxxxxxxx>, <oracle-l@xxxxxxxxxxxxx>
- Date: Thu, 8 Feb 2007 11:45:48 -0500
Thanks,
Yes, I am thinking so. Perhaps you could point me to some docs -
before I go looking myself.
But to narrow this down a little further... In an Oracle 9 database can
I get the information I am seeking from the audit. In an Oracle 10g
database, FGAC should do it I believe.
The issue is that the company does not know how many applications or
where they are that may be logging directly into a schema owner whose
password may change. The password will start changing because of SOX.
So they want to be able to identify as much as possible before the
password changes. Of course, now that an Oracle 9 password has
changed, they also would like to identify the applications that may be
attempting to log in.
Joel Patterson
Database Administrator
joel.patterson@xxxxxxxxxxx
x72546
904 727-2546
________________________________
From: Richard J. Goulet [mailto:rgoulet@xxxxxxxxxx]
Sent: Thursday, February 08, 2007 10:53 AM
To: Patterson, Joel; oracle-l@xxxxxxxxxxxxx
Subject: RE: Access and password changes
You could enable auditing at the database level then audit all
successful connections for a couple of days. You could also audit
unsuccessful connections to find the reverse.
Dick Goulet, Senior Oracle DBA
45 Bartlett St Marlborough, Ma 01752, USA
Tel.: 508.573.1978 |Fax: 508.229.2019 | Cell:508.742.5795
RGoulet@xxxxxxxxxx
: POWERING TRANSFORMATION
________________________________
From: oracle-l-bounce@xxxxxxxxxxxxx
[mailto:oracle-l-bounce@xxxxxxxxxxxxx] On Behalf Of
Joel.Patterson@xxxxxxxxxxx
Sent: Thursday, February 08, 2007 10:16 AM
To: oracle-l@xxxxxxxxxxxxx
Subject: Access and password changes
Changing the password of the 'schema owner' - the owner of the data.
I have a manager who has asked if there is a way to track what
'application' is logging in before changing the password so that the
change can be smoother. (either change the password in the app or
create a new account for the app).
The second part is can you track what application is attempting to log
in to a schema where the password has already been changed.
The version of Oracle are 9, and 10.
A case where the password has already been changed happens to be
Oracle9.
Privileged/Confidential Information may be contained in this message or
attachments hereto. Please advise immediately if you or your employer do
not consent to Internet email for messages of this kind. Opinions,
conclusions and other information in this message that do not relate to
the official business of this company shall be understood as neither
given nor endorsed by it.
Other related posts:
