Audit entries
(TABLENUM, EVENTTIME, RID)
| Name | Data Type | Description |
|---|---|---|
| EVENT | long | Audit event ID |
| EVENT_NAME | string(32) | Name of audit event |
| EVENTMOD | long | 0 = nothing; 1 = passed permission check; 2 = failed permission check |
| DENIED | string(12) | Denied = Operation was denied (EVENTMOD = 2); (blank) = operation was allowed (EVENTMOD = 0 or 1) |
| CMDTYPE | string(8) | Type of command (DDL, DML) |
| SPID | long | Session process ID |
| EVENTTIME | time | Time of audit event ocurring |
| SEQUENCE | long | Sequence # of text fragment for the given audit event; SEQUENCE > 1 if P1 / P2 (i.e. command text) is too long for one row |
| SUID | long | Server user ID |
| LOGINNAME | string(32) | Login name for session with audited operation |
| LOGINTIME | time | Time of login for session with audited operation |
| HOSTNAME | string(44) | Client host name for session with audited operation |
| IPADDR | string(44) | Client IP address for session with audited operation |
| DBID | long | Database ID |
| DBNAME | string(32) | Database name |
| OBJID | long | ID of object involved in operation |
| OBJOWNER | string(32) | Owner name of object involved in operation |
| OBJNAME | string(32) | Name of object involved in operation |
| XACTID | binary(8) | Transaction ID of operation |
| NODEID | long | Instance ID; 0 = non-CE |
| TABLENUM | long | Audit table number (1 = sysaudits_01, etc.) that contained the audit event |
| RID | double | Internal-use row ID; created by Surveillance |
| P1TYPE | long | Data type of P1 column (string, long, time) |
| P1 | string(64) | First extra information, such login IP address or command text |
| P2TYPE | long | Data type of P2 column (string, long, time) |
| P2 | string(44) | Second extra information |
| Attributes: | None |
|---|---|
| Minimum database version: | 15.0.3 |