SQL Guide : Database system tables and system views : System tables : SYS_AUDIT_TRAIL
  
SYS_AUDIT_TRAIL
The SYS_AUDIT_TRAIL system table contains auditing information. When auditing is enabled (Sql.AuditTrailEnabled=yes), information about the database activities are written into the SYS_AUDIT_TRAIL system table. Users with administrator rights can query the SYS_AUDIT_TRAIL system table with normal SQL syntax.
Column name
Data type
Description
CREATIME
TIMESTAMP
Timestamp when the audited statement was committed.
LOGIN_USER
WVARCHAR
User logged into the system to execute and commit the audited data.
MACHINE_ID
WVARCHAR
States where the audited statement was executed. If MACHINE_ID is not set, the value is NULL.
APP_INFO
WVARCHAR
States which application executed the statement. If the APP_INFO is not set, the value is NULL.
CURRENT_CATALOG
WVARCHAR
States which catalog was used when the transaction was committed.
CURRENT_SCHEMA
WVARCHAR
States which schema was used when the transaction was committed.
TYPE
VARCHAR
States what kind of an operation the audited change was. The possible values are described below.
SQLSTR
LONG WVARCHAR
States the executed SQL string that was audited.
The possible values for TYPE include:
STATUS
ALTER TABLE
ALTER USER (The password in the SQL statement is not recorded)
CREATE CATALOG
CREATE DOMAIN
CREATE EVENT
CREATE INDEX
CREATE PUBLICATION
CREATE ROLE
CREATE SCHEMA
CREATE SEQUENCE
CREATE TABLE
CREATE USER (The password in the SQL statement is not recorded)
CREATE VIEW
DELETE (Recorded if the DELETE statement affected the SYS_AUDIT_TRAIL system table)
DROP CATALOG
DROP DOMAIN
DROP EVENT
DROP INDEX
DROP PUBLICATION
DROP ROLE
DROP SCHEMA
DROP SEQUENCE
DROP TABLE
DROP USER
DROP VIEW
GRANT
GRANT ROLE
REVOKE
REVOKE ROLE
CREATE PROCEDURE
DROP PROCEDURE CREATE TRIGGER ALTER TRIGGER DROP TRIGGER
See also
System tables