How can I audit the 'grant dba' statement?
The DBAs on our team are required to be notified any time a 'grant dba....' statement is issued. I've seen Doc Id 2553550.1, but the query displays don't match what I get when I run the queries. (the example is for 11.2.0.4 and we are running 12.2.0.1 - not sure if this is why there is a difference) Has anyone implemented this using a unified audit policy, a trigger, or just a query against the dba_audit_trail? We need to minimize the performance hit on all grants (some users get 80-100 roles and we don't need to know about any of them other than DBA). Any thoughts/help would be greatly appreciated.