Kbase P113507: Can an administrator lock themselves out of the auditing structure and leave it frozen with no way t
| Autor |
Progress Software Corporation - Progress |
| Acesso |
Público |
| Publicação |
2/16/2006 |
|
Status: Unverified
GOAL:
Can auditing be 'locked out'?
GOAL:
Can an administrator lock themselves out of the auditing structure and leave it frozen with no way to access it?
FACT(s) (Environment):
OpenEdge 10.1A
FIX:
Anybody can write 4GL to update the audit policy, however, any changes to the audit policy will be audited. The audit tables themselves will be under the control of the Audit Administrator (who has to be trusted). This is a separate role from the Database Administrator (DBA), however, the DBA will have the privileges if not Audit Administrator is defined. The actual audit data can never be updated and can only be created or deleted by the database engine or a registered archive utility (with appropriate privileges).