3.10.1 Specification format and rules for the DROP AUDIT statement
The DROP AUDIT statement deletes the audit target definition created by using the CREATE AUDIT statement.
- Important
-
You can execute the DROP AUDIT statement when the audit trail facility is enabled. To check whether the audit trail facility is enabled, execute the adbaudittrail -d command.
- Organization of this subsection
(1) Specification format
DROP-AUDIT-statement::=DROP AUDIT AUDITTYPE EVENT FOR ANY OPERATION
(2) Explanation of specification format
- ● AUDITTYPE EVENT
-
Specify this if you want to delete the audit target definition created by specifying EVENT for AUDITTYPE in the CREATE AUDIT statement. Specify this when you stop outputting an audit trail about the final event results.
- ● FOR ANY OPERATION
-
Specify this if you want to exclude the events listed in Table 3‒3: Audit-target events from the audit targets.
Specify this when you delete the audit target definition created by specifying FOR ANY OPERATION in the CREATE AUDIT statement.
(3) Privileges required at execution
To execute the DROP AUDIT statement, the CONNECT privilege and the audit admin privilege are required.
(4) Rules
-
This statement can delete the audit target definition created by using the CREATE AUDIT statement.
-
An HADB server checks the audit target definition during the determination processing for outputting an audit trail. Therefore, depending on the audit trail output time, an audit trail about operations that were performed before the audit target definition is deleted might not be output although those operations are to be audited.
(5) Examples
- Example
-
Delete the audit target definition created by using the CREATE AUDIT statement.
DROP AUDIT AUDITTYPE EVENT FOR ANY OPERATION