I would add machine and perhaps program to the list so I would try to capture the v$session.osuser, machine, terminal, and program plus the IP Address via sys_context. Thomas noted several potential problems with attempting to use an IP to track access. Additional information helps if you have reason to look. IMHO -- Mark D Powell -- -----Original Message----- From: oracle-l-bounce@xxxxxxxxxxxxx [mailto:oracle-l-bounce@xxxxxxxxxxxxx] On Behalf Of Thomas Day Sent: Wednesday, December 07, 2005 8:20 AM To: Oracle-L@xxxxxxxxxxxxx Subject: Re: Can IP addresses be audited in Oracle I won't ask why your manager wants IP addresses auditied. I hope that he is aware that, with most Windows environments, the IP address is dynamically allocated at logon to the network and thus is not fixed to a specific workstation. Also, if you have a private network behind a switch the only IP address exposed to the outside world, i.e., Oracle, is the switch's IP address. Terminal Id or OS Username are much more useful in my opinion but managers know best. -- //www.freelists.org/webpage/oracle-l -- //www.freelists.org/webpage/oracle-l