Database Activity Monitoring (DAM) policies : Privilege policies : Oracle privilege policies
 
Oracle privilege policies
FortiDB provides the following privilege policies:
Policy Names
Contents
Description
Column Privileges
Column-level privilege granting
This policy generates alerts when the column privileges are modified.
For example, user SCOTT can grant SELECT privileges on a column of a table to a user, without letting that user SELECT on other columns in the same table.
Profiles
Resources (I/O, etc.) assigned to users
This policy generates alerts when the profiles are modified.
Changes to any profile setting could have wide-reaching effects.
Role Privileges
Roles granted to users and other roles
This policy generates alerts when the role privileges are modified.
It also contains information about which role has been assigned to other roles. Change of user’s role means changes in user’s access privileges. Role changes should be closely monitored in order to ensure data security.
Roles
Database roles
This policy generates alerts when the roles are modified.
Contains information about all existing roles in the database.
System Privileges
All granted system privileges
This policy generates alerts when the system privileges are created, deleted, or modified.
Contains all granted system privileges to all users or roles. System privileges are powerful privileges and should be granted with great cautions. Monitoring system-privilege changes should be mandatory.
Table Privileges
All granted schema- object privileges
This policy generates alerts when the table privileges are modified.
Lists all granted privileges on schema objects. These include privileges on tables, views, sequences, procedures, functions and packages.
User Privileges
Database users
This policy generates alerts when the users privileges are modified.
Contains information about users in the database. Although this view has no privilege information, it contains the users to whom privileges may be assigned or changed.
See also
Privilege policies