Wednesday, 26 June 2013

Audit Trails in oracle database



            Audit Trails in oracle database

Auditing Trails Records are stored in two ways

1) Database Table (sys.aud$)

2) OS Directory (audit_file_dest)

Option 1 : If we use DB table to store auditing records Performance will be degrade, Because these tables are under SYSTEM Tablespace by default, also we can move this sys.aud$ table to dedicated tablespace for this we need to create new Tablespace. Oracle recommends to use OS Directory to store Audit Trail Records.

Table Growth: The Audit Trails table growth depends on what are the Auditing are enabled, for example: If whenever a table has been altered, updated, inserted or deleted.

SQL> AUDIT ALTER, GRANT, INSERT, UPDATE, DELETE

    ON DEFAULT;

 Purging Audit Trails Table: The purging Audit Trails Records in the tables can be manually purge or automatic purge.

Option 2: If we use OS Directory to store auditing records there will not be any performance issue also easy to manage those log files, we can define its size and age. Purging also enabled as automatic purging.

Our Plan:

As per Oracle recommendation we will implement OS Directory to store these Audit Trail Records.

Procedure:

1) Modify the initialization file for enabling Audit trail.

2) Set the Audit file destination in initialization file.

3) Define the Size of its log file.

4) Define days to create new log file.

5) Define Purging days for automatic purging.

6) Define Audit Trails in Database.

7) Bounce the Database.

8) Create new pfile from spfile.

Step 1: Modify the initialization file for enabling Audit trail.

SQL> ALTER SYSTEM SET audit_trail=os SCOPE=SPFILE;

System altered.

SQL> ALTER SYSTEM SET AUDIT_SYS_OPERATIONS=TRUE SCOPE=SPFILE;

System altered.

Step 2: Set the Audit file destination in initialization file.

#Default Location is $ORACLE_HOME/rdbms/audit

If we like to change to location for log files the below command will change its location.

SQL> ALTER SYSTEM SET audit_file_dest=/backup/Audit_Trails/ SCOPE=SPFILE;

System altered.

Note : some latest it will work otherwise need to edit on pfile , bounce Database using new audit_file_dest=’<new location >’.

Step 3: Define the Size of its log file.

If we like to create new file after reaching 100MB, the following procedure calls new log file after reaching 100MB.

BEGIN

DBMS_AUDIT_MGMT.SET_AUDIT_TRAIL_PROPERTY(

       audit_trail_type => DBMS_AUDIT_MGMT.AUDIT_TRAIL_OS,

       audit_trail_property  =>  DBMS_AUDIT_MGMT.OS_FILE_MAX_SIZE,

       audit_trail_property_value =>  102400 /* 100MB*/ );

END;

/

Step 4: Define days to create new log file.

If we like to create new file after one day, the following procedure calls new file after 1 day.

BEGIN

DBMS_AUDIT_MGMT.SET_AUDIT_TRAIL_PROPERTY(

       audit_trail_type => DBMS_AUDIT_MGMT.AUDIT_TRAIL_OS,

       audit_trail_property  =>  DBMS_AUDIT_MGMT.OS_FILE_MAX_AGE,

       audit_trail_property_value  =>  1 /* days */);

END;

/

Step 5: Define Purging days for automatic purging.

If we like to purge all Auditing Records after 7 days, the following procedure will purge after 7days once.

BEGIN

  DBMS_AUDIT_MGMT.CREATE_PURGE_JOB (

   AUDIT_TRAIL_TYPE            => DBMS_AUDIT_MGMT.AUDIT_TRAIL_OS,

   AUDIT_TRAIL_PURGE_INTERVAL  => 168,

   AUDIT_TRAIL_PURGE_NAME      => 'Standard_Audit_Trail_PJ',

   USE_LAST_ARCH_TIMESTAMP     => FALSE );

END;

/

Step 6: Define Audit Trails in Database.

To protect unauthorized access of all Table, we will Audit any Create, Alter, Update and Delete on all tables using the following query,

SQL> AUDIT DELETE ANY TABLE, ALTER ANY TABLE, CREATE ANY TABLE, UPDATE ANY TABLE BY SYS,APPS;

Step 7: Bounce the Database.

SQL>SHUTDOWN IMMEDIATE

SQL>STARTUP

Step 8: create new pfile from spfile

SQL > CREATE PFILE FROM SPFILE;
Posted by at No comments:

Monday, 13 May 2013

SOME USEFUL UNIX COMMANDS



1) To create a empty file
 
          oracle@db$touch file_name   or  oracle@db$ >file_name

in the above cmd oracle@db--> my host name , touch--> cmd to create a file and file_name-->required to file name to create.

2) To display a file contents 

          oracle@db$cat file_name  

note : cat command displays all the content of file if the file is more than the window size you can use more command

         oracle@db$more file_name 

       this more command displays as your window size within time . To see whole content press space bar
3) To search a sting with in a file 
          syntax : oracle@db$ grep sekar file_name

          oracle@db$ grep -i ora-  /oracle/proddb/bdump/alert_PROD.log 

             output :


ORA-19504: failed to create file ""
ORA-00312: online log 2 thread 1: '/data02/proddata/log02a.dbf'
ORA-00312: online log 2 thread 1: '/data02/proddata/log02b.dbf'

grep -->global regular expression print 

i --> for case sensitive

ora-  --> required to search in my file

alert_PROD.log --> input file in this i want to search 


4) To count how many lines in a file 

                 syntax :

                oracle@db$wc file_name 
   
                example : 

oracle@db$ wc alert_DEV.log
  258072  1877537 13329816 alert_DEV.log

258072-->total lines

13329816 -->total words in the file 

if u want only how many line , you can use $wc -l file_name

5)To edit a file using vi editor 

Before a open a file in vi editor , you need to check your current editor 
$echo EDITOR output of the command shows vi means it's ok , if it not returning anything means you need set editor as vi 

check current editor $ echo $EDITOR
To set ediotr            $ export EDITOR=vi

To open a file $ vi alert_ORCL.log
To open a file as read only $ vi -R  alert_ORCL.log or $ view alert_ORCL.log

after opening a file to insert ---> esc + i

to move between line ---> esc + upper arrow or esc + lower arrow 
to search a sting vi mode ---> esc + /string 
to erase a letter ---> esc + x
to erase a whole line ---> esc + dd
to save and quit ---> esc + :wq
to quit without save ---> esc + :q!
to move upper ---> esc + k
to move lower ---> esc + j
to move right side ---> esc + l
to move left side ---> esc + h

6)To list files within a directory 

syntax : oracle@db$ ls 

options :

ls -la ----> to list hidden file including 
ls -ltr  or ls -lrt  ---> for ascending order 
ls -lt ---> for descending  order


7) To make compressed zip file 

Note : In the below all gzip and tar cmd instead of file you can directory also.

To comprees 
syntax : oracle@db$ gzip file_name

To decompress 
syntax : oracle@db$ gzip -d file_name.gz

8) To make tar ( like win-rar in windows ) 


tar - Tape ARchiver

And the options:

c - create 

x - extract
v - verbose output (lists all files as they are extracted)
j - deal with bzipped file

To make tar of some files 

oracle@db$ tar cvf file_name.tar file_name1 file_name2 file_name3

The above command will create file_nam1 , file_name2 and file_name3 into a size file as file_name.tar.
after making tar also the source files will exist like file_nam1 , file_name2 and file_name3.

To make untar 

oracle@db$ tar xvf file_name.tar 

The above cmd will untar the file_name.tar into file_name1 , file_name2 and file_name3 .


9)To make compressed tar 

oracle@db$tar cjvf file_name.tar.bz2 file_name1 file_name2 file_name3

To make decompress 

oracle@db$tar xjvf  file_name.tar.bz2 

10)To check particular process is running or not 

oracle@db$ ps -ef | grep http

To check all the process of particular user process 

oracle@db$ ps -fu oracle 

  

Pls give some comments........:)

Posted by at No comments:

Saturday, 13 April 2013

FRM-92095 : ORACLE JInitiator Version too low


       FRM-92095: Oracle JInitiator version too low


If you facing problem when opening ORACLE APPLICATION FORMS browser says FRM-92095: Oracle JInitiator version too low.

Step 1 : download the file from

TO DOWNLOAD JINITIATOR CLICK HERE

Step 2: Install the jinit13122.exe on your Desktop

Step 3: Navigate to : Start->Settings->Control panel ->Java(icon)->Double click and open the Java icon->it will open->java control panel->in that menu open java->after clicking on java menu->u will get view button ->click on view->it will open some row of parameters ->in that double click on Runtime parameters->after clicking on that ->paste this parameter (   -Djava.vendor="Sun Microsystems Inc."    ) without bracket ->after that ->ok->apply->ok

Step 4 : after completing step 4

Step 5 : Test now Forms are opening

Note : before doing the above steps u must have  to install  the Java.

Posted by at No comments:

Friday, 12 April 2013

NTP Service Sync on UNIX

NTP SYNC ON LINUX


STEP 1 : STOP THE NTP SERVICE

PROD@oracledb#service ntp stop

STEP 2 : SYNC WITH NTP SERVER

PROD@oralcedb#ntpdate 197.0.0.55

STEP 3: START NTP SERVICE

PROD@oracledb#service ntp start

STEP 4 : CHECK THE STATUS OF NTP SERVICE WHETHER STARTED OR NOT

PROD@oracledb#service ntp status

NTP SYNC ON SOLARIS 5.8

STEP 1 : STOP NTP SERVICE

DEV@DB#./etc/init.d/xntpd stop

STEP 2 : SYNC WITH NTP SERVER 

DEV@DB#ntpdate 197.0.0.55

STEP 3 : START NTP SERVICE 

DEV@DB#./etc/init.d/xntpd start

STEP 4 : CHECK THE STATUS OF NTP SERVICE 

DEV@DB#ps -ef | grep ntp

NTP SYNC ON SOLARIS 5.10

STEP 1 : STOP NTP SERVICE 

TEST@APPS#svcadm disable ntp 

STEP 2 : SYNC WITH NTP SERVER

TEST@APPS#nptdate 197.0.0.55

STEP 3 : START NTP SERVICE 

TEST@APPS#svcadmenable ntp

STEP 4 : CHECK THE STATUS OF NTP SERVICE 

TEST@APPS#svcs -a | grep ntp

Posted by at No comments:
Subscribe to: Posts (Atom)