1. Packages
  2. Oracle Cloud Infrastructure
  3. API Docs
  4. DataSafe
  5. getAuditEventAnalytic
Oracle Cloud Infrastructure v2.30.0 published on Monday, Apr 14, 2025 by Pulumi

oci.DataSafe.getAuditEventAnalytic

Explore with Pulumi AI

Oracle Cloud Infrastructure v2.30.0 published on Monday, Apr 14, 2025 by Pulumi

This data source provides details about a specific Audit Event Analytic resource in Oracle Cloud Infrastructure Data Safe service.

By default ListAuditEventAnalytics operation will return all of the summary columns. To filter desired summary columns, specify it in the summaryOf query parameter.

Example: /ListAuditEventAnalytics?summaryField=targetName&summaryField=userName&summaryField=clientHostName&summaryField &summaryField=dmls&summaryField=privilege_changes&summaryField=ddls&summaryField=login_failure&summaryField=login_success &summaryField=eventcount&q=(operationTime ge ‘2021-06-13T23:49:14’)&groupBy=targetName

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testAuditEventAnalytic = oci.DataSafe.getAuditEventAnalytic({
    compartmentId: compartmentId,
    accessLevel: auditEventAnalyticAccessLevel,
    compartmentIdInSubtree: auditEventAnalyticCompartmentIdInSubtree,
    groupBies: auditEventAnalyticGroupBy,
    queryTimeZone: auditEventAnalyticQueryTimeZone,
    scimQuery: auditEventAnalyticScimQuery,
    summaryFields: auditEventAnalyticSummaryField,
    timeEnded: auditEventAnalyticTimeEnded,
    timeStarted: auditEventAnalyticTimeStarted,
});
Copy
import pulumi
import pulumi_oci as oci

test_audit_event_analytic = oci.DataSafe.get_audit_event_analytic(compartment_id=compartment_id,
    access_level=audit_event_analytic_access_level,
    compartment_id_in_subtree=audit_event_analytic_compartment_id_in_subtree,
    group_bies=audit_event_analytic_group_by,
    query_time_zone=audit_event_analytic_query_time_zone,
    scim_query=audit_event_analytic_scim_query,
    summary_fields=audit_event_analytic_summary_field,
    time_ended=audit_event_analytic_time_ended,
    time_started=audit_event_analytic_time_started)
Copy
package main

import (
	"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/datasafe"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := datasafe.GetAuditEventAnalytic(ctx, &datasafe.GetAuditEventAnalyticArgs{
			CompartmentId:          compartmentId,
			AccessLevel:            pulumi.StringRef(auditEventAnalyticAccessLevel),
			CompartmentIdInSubtree: pulumi.BoolRef(auditEventAnalyticCompartmentIdInSubtree),
			GroupBies:              auditEventAnalyticGroupBy,
			QueryTimeZone:          pulumi.StringRef(auditEventAnalyticQueryTimeZone),
			ScimQuery:              pulumi.StringRef(auditEventAnalyticScimQuery),
			SummaryFields:          auditEventAnalyticSummaryField,
			TimeEnded:              pulumi.StringRef(auditEventAnalyticTimeEnded),
			TimeStarted:            pulumi.StringRef(auditEventAnalyticTimeStarted),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;

return await Deployment.RunAsync(() => 
{
    var testAuditEventAnalytic = Oci.DataSafe.GetAuditEventAnalytic.Invoke(new()
    {
        CompartmentId = compartmentId,
        AccessLevel = auditEventAnalyticAccessLevel,
        CompartmentIdInSubtree = auditEventAnalyticCompartmentIdInSubtree,
        GroupBies = auditEventAnalyticGroupBy,
        QueryTimeZone = auditEventAnalyticQueryTimeZone,
        ScimQuery = auditEventAnalyticScimQuery,
        SummaryFields = auditEventAnalyticSummaryField,
        TimeEnded = auditEventAnalyticTimeEnded,
        TimeStarted = auditEventAnalyticTimeStarted,
    });

});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.DataSafe.DataSafeFunctions;
import com.pulumi.oci.DataSafe.inputs.GetAuditEventAnalyticArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var testAuditEventAnalytic = DataSafeFunctions.getAuditEventAnalytic(GetAuditEventAnalyticArgs.builder()
            .compartmentId(compartmentId)
            .accessLevel(auditEventAnalyticAccessLevel)
            .compartmentIdInSubtree(auditEventAnalyticCompartmentIdInSubtree)
            .groupBies(auditEventAnalyticGroupBy)
            .queryTimeZone(auditEventAnalyticQueryTimeZone)
            .scimQuery(auditEventAnalyticScimQuery)
            .summaryFields(auditEventAnalyticSummaryField)
            .timeEnded(auditEventAnalyticTimeEnded)
            .timeStarted(auditEventAnalyticTimeStarted)
            .build());

    }
}
Copy
variables:
  testAuditEventAnalytic:
    fn::invoke:
      function: oci:DataSafe:getAuditEventAnalytic
      arguments:
        compartmentId: ${compartmentId}
        accessLevel: ${auditEventAnalyticAccessLevel}
        compartmentIdInSubtree: ${auditEventAnalyticCompartmentIdInSubtree}
        groupBies: ${auditEventAnalyticGroupBy}
        queryTimeZone: ${auditEventAnalyticQueryTimeZone}
        scimQuery: ${auditEventAnalyticScimQuery}
        summaryFields: ${auditEventAnalyticSummaryField}
        timeEnded: ${auditEventAnalyticTimeEnded}
        timeStarted: ${auditEventAnalyticTimeStarted}
Copy

Using getAuditEventAnalytic

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getAuditEventAnalytic(args: GetAuditEventAnalyticArgs, opts?: InvokeOptions): Promise<GetAuditEventAnalyticResult>
function getAuditEventAnalyticOutput(args: GetAuditEventAnalyticOutputArgs, opts?: InvokeOptions): Output<GetAuditEventAnalyticResult>
Copy
def get_audit_event_analytic(access_level: Optional[str] = None,
                             compartment_id: Optional[str] = None,
                             compartment_id_in_subtree: Optional[bool] = None,
                             group_bies: Optional[Sequence[str]] = None,
                             query_time_zone: Optional[str] = None,
                             scim_query: Optional[str] = None,
                             summary_fields: Optional[Sequence[str]] = None,
                             time_ended: Optional[str] = None,
                             time_started: Optional[str] = None,
                             opts: Optional[InvokeOptions] = None) -> GetAuditEventAnalyticResult
def get_audit_event_analytic_output(access_level: Optional[pulumi.Input[str]] = None,
                             compartment_id: Optional[pulumi.Input[str]] = None,
                             compartment_id_in_subtree: Optional[pulumi.Input[bool]] = None,
                             group_bies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                             query_time_zone: Optional[pulumi.Input[str]] = None,
                             scim_query: Optional[pulumi.Input[str]] = None,
                             summary_fields: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                             time_ended: Optional[pulumi.Input[str]] = None,
                             time_started: Optional[pulumi.Input[str]] = None,
                             opts: Optional[InvokeOptions] = None) -> Output[GetAuditEventAnalyticResult]
Copy
func GetAuditEventAnalytic(ctx *Context, args *GetAuditEventAnalyticArgs, opts ...InvokeOption) (*GetAuditEventAnalyticResult, error)
func GetAuditEventAnalyticOutput(ctx *Context, args *GetAuditEventAnalyticOutputArgs, opts ...InvokeOption) GetAuditEventAnalyticResultOutput
Copy

> Note: This function is named GetAuditEventAnalytic in the Go SDK.

public static class GetAuditEventAnalytic 
{
    public static Task<GetAuditEventAnalyticResult> InvokeAsync(GetAuditEventAnalyticArgs args, InvokeOptions? opts = null)
    public static Output<GetAuditEventAnalyticResult> Invoke(GetAuditEventAnalyticInvokeArgs args, InvokeOptions? opts = null)
}
Copy
public static CompletableFuture<GetAuditEventAnalyticResult> getAuditEventAnalytic(GetAuditEventAnalyticArgs args, InvokeOptions options)
public static Output<GetAuditEventAnalyticResult> getAuditEventAnalytic(GetAuditEventAnalyticArgs args, InvokeOptions options)
Copy
fn::invoke:
  function: oci:DataSafe/getAuditEventAnalytic:getAuditEventAnalytic
  arguments:
    # arguments dictionary
Copy

The following arguments are supported:

CompartmentId This property is required. string
A filter to return only resources that match the specified compartment OCID.
AccessLevel string
Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
CompartmentIdInSubtree bool
Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
GroupBies List<string>
A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
QueryTimeZone string
Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
ScimQuery string

The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

SummaryFields List<string>
Specifies a subset of summarized fields to be returned in the response.
TimeEnded string
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
TimeStarted string
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
CompartmentId This property is required. string
A filter to return only resources that match the specified compartment OCID.
AccessLevel string
Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
CompartmentIdInSubtree bool
Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
GroupBies []string
A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
QueryTimeZone string
Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
ScimQuery string

The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

SummaryFields []string
Specifies a subset of summarized fields to be returned in the response.
TimeEnded string
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
TimeStarted string
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
compartmentId This property is required. String
A filter to return only resources that match the specified compartment OCID.
accessLevel String
Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
compartmentIdInSubtree Boolean
Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
groupBies List<String>
A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
queryTimeZone String
Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
scimQuery String

The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

summaryFields List<String>
Specifies a subset of summarized fields to be returned in the response.
timeEnded String
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
timeStarted String
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
compartmentId This property is required. string
A filter to return only resources that match the specified compartment OCID.
accessLevel string
Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
compartmentIdInSubtree boolean
Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
groupBies string[]
A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
queryTimeZone string
Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
scimQuery string

The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

summaryFields string[]
Specifies a subset of summarized fields to be returned in the response.
timeEnded string
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
timeStarted string
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
compartment_id This property is required. str
A filter to return only resources that match the specified compartment OCID.
access_level str
Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
compartment_id_in_subtree bool
Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
group_bies Sequence[str]
A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
query_time_zone str
Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
scim_query str

The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

summary_fields Sequence[str]
Specifies a subset of summarized fields to be returned in the response.
time_ended str
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
time_started str
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
compartmentId This property is required. String
A filter to return only resources that match the specified compartment OCID.
accessLevel String
Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
compartmentIdInSubtree Boolean
Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
groupBies List<String>
A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
queryTimeZone String
Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
scimQuery String

The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

summaryFields List<String>
Specifies a subset of summarized fields to be returned in the response.
timeEnded String
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
timeStarted String
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.

getAuditEventAnalytic Result

The following output properties are available:

CompartmentId string
Id string
The provider-assigned unique ID for this managed resource.
Items List<GetAuditEventAnalyticItem>
The aggregated data point items.
AccessLevel string
CompartmentIdInSubtree bool
GroupBies List<string>
QueryTimeZone string
ScimQuery string
SummaryFields List<string>
TimeEnded string
The time at which the aggregation ended.
TimeStarted string
The time at which the aggregation started.
CompartmentId string
Id string
The provider-assigned unique ID for this managed resource.
Items []GetAuditEventAnalyticItem
The aggregated data point items.
AccessLevel string
CompartmentIdInSubtree bool
GroupBies []string
QueryTimeZone string
ScimQuery string
SummaryFields []string
TimeEnded string
The time at which the aggregation ended.
TimeStarted string
The time at which the aggregation started.
compartmentId String
id String
The provider-assigned unique ID for this managed resource.
items List<GetAuditEventAnalyticItem>
The aggregated data point items.
accessLevel String
compartmentIdInSubtree Boolean
groupBies List<String>
queryTimeZone String
scimQuery String
summaryFields List<String>
timeEnded String
The time at which the aggregation ended.
timeStarted String
The time at which the aggregation started.
compartmentId string
id string
The provider-assigned unique ID for this managed resource.
items GetAuditEventAnalyticItem[]
The aggregated data point items.
accessLevel string
compartmentIdInSubtree boolean
groupBies string[]
queryTimeZone string
scimQuery string
summaryFields string[]
timeEnded string
The time at which the aggregation ended.
timeStarted string
The time at which the aggregation started.
compartment_id str
id str
The provider-assigned unique ID for this managed resource.
items Sequence[datasafe.GetAuditEventAnalyticItem]
The aggregated data point items.
access_level str
compartment_id_in_subtree bool
group_bies Sequence[str]
query_time_zone str
scim_query str
summary_fields Sequence[str]
time_ended str
The time at which the aggregation ended.
time_started str
The time at which the aggregation started.
compartmentId String
id String
The provider-assigned unique ID for this managed resource.
items List<Property Map>
The aggregated data point items.
accessLevel String
compartmentIdInSubtree Boolean
groupBies List<String>
queryTimeZone String
scimQuery String
summaryFields List<String>
timeEnded String
The time at which the aggregation ended.
timeStarted String
The time at which the aggregation started.

Supporting Types

GetAuditEventAnalyticItem

Count This property is required. string
Total count of aggregated value.
Dimensions This property is required. List<GetAuditEventAnalyticItemDimension>
Details of aggregation dimensions used for summarizing audit events.
DisplayName This property is required. string
Display Name of aggregation field.
MetricName This property is required. string
Name of the aggregation.
TimeEnded This property is required. string
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
TimeStarted This property is required. string
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
Count This property is required. string
Total count of aggregated value.
Dimensions This property is required. []GetAuditEventAnalyticItemDimension
Details of aggregation dimensions used for summarizing audit events.
DisplayName This property is required. string
Display Name of aggregation field.
MetricName This property is required. string
Name of the aggregation.
TimeEnded This property is required. string
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
TimeStarted This property is required. string
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
count This property is required. String
Total count of aggregated value.
dimensions This property is required. List<GetAuditEventAnalyticItemDimension>
Details of aggregation dimensions used for summarizing audit events.
displayName This property is required. String
Display Name of aggregation field.
metricName This property is required. String
Name of the aggregation.
timeEnded This property is required. String
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
timeStarted This property is required. String
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
count This property is required. string
Total count of aggregated value.
dimensions This property is required. GetAuditEventAnalyticItemDimension[]
Details of aggregation dimensions used for summarizing audit events.
displayName This property is required. string
Display Name of aggregation field.
metricName This property is required. string
Name of the aggregation.
timeEnded This property is required. string
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
timeStarted This property is required. string
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
count This property is required. str
Total count of aggregated value.
dimensions This property is required. Sequence[datasafe.GetAuditEventAnalyticItemDimension]
Details of aggregation dimensions used for summarizing audit events.
display_name This property is required. str
Display Name of aggregation field.
metric_name This property is required. str
Name of the aggregation.
time_ended This property is required. str
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
time_started This property is required. str
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
count This property is required. String
Total count of aggregated value.
dimensions This property is required. List<Property Map>
Details of aggregation dimensions used for summarizing audit events.
displayName This property is required. String
Display Name of aggregation field.
metricName This property is required. String
Name of the aggregation.
timeEnded This property is required. String
An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
timeStarted This property is required. String
An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.

GetAuditEventAnalyticItemDimension

AuditEventTimes This property is required. List<string>
Time of audit event occurrence in the target database.
AuditTypes This property is required. List<string>
Type of auditing.
ClientHostnames This property is required. List<string>
Name of the host machine from which the session was spawned.
ClientIds This property is required. List<string>
The client identifier in each Oracle session.
ClientPrograms This property is required. List<string>
The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
DbUserNames This property is required. List<string>
Name of the database user whose actions were audited.
EventNames This property is required. List<string>
Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
ObjectTypes This property is required. List<string>
Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
TargetClasses This property is required. List<string>
Class of the target that was audited.
TargetIds This property is required. List<string>
The OCID of the target database that was audited.
TargetNames This property is required. List<string>
The name of the target database that was audited.
AuditEventTimes This property is required. []string
Time of audit event occurrence in the target database.
AuditTypes This property is required. []string
Type of auditing.
ClientHostnames This property is required. []string
Name of the host machine from which the session was spawned.
ClientIds This property is required. []string
The client identifier in each Oracle session.
ClientPrograms This property is required. []string
The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
DbUserNames This property is required. []string
Name of the database user whose actions were audited.
EventNames This property is required. []string
Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
ObjectTypes This property is required. []string
Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
TargetClasses This property is required. []string
Class of the target that was audited.
TargetIds This property is required. []string
The OCID of the target database that was audited.
TargetNames This property is required. []string
The name of the target database that was audited.
auditEventTimes This property is required. List<String>
Time of audit event occurrence in the target database.
auditTypes This property is required. List<String>
Type of auditing.
clientHostnames This property is required. List<String>
Name of the host machine from which the session was spawned.
clientIds This property is required. List<String>
The client identifier in each Oracle session.
clientPrograms This property is required. List<String>
The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
dbUserNames This property is required. List<String>
Name of the database user whose actions were audited.
eventNames This property is required. List<String>
Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
objectTypes This property is required. List<String>
Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
targetClasses This property is required. List<String>
Class of the target that was audited.
targetIds This property is required. List<String>
The OCID of the target database that was audited.
targetNames This property is required. List<String>
The name of the target database that was audited.
auditEventTimes This property is required. string[]
Time of audit event occurrence in the target database.
auditTypes This property is required. string[]
Type of auditing.
clientHostnames This property is required. string[]
Name of the host machine from which the session was spawned.
clientIds This property is required. string[]
The client identifier in each Oracle session.
clientPrograms This property is required. string[]
The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
dbUserNames This property is required. string[]
Name of the database user whose actions were audited.
eventNames This property is required. string[]
Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
objectTypes This property is required. string[]
Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
targetClasses This property is required. string[]
Class of the target that was audited.
targetIds This property is required. string[]
The OCID of the target database that was audited.
targetNames This property is required. string[]
The name of the target database that was audited.
audit_event_times This property is required. Sequence[str]
Time of audit event occurrence in the target database.
audit_types This property is required. Sequence[str]
Type of auditing.
client_hostnames This property is required. Sequence[str]
Name of the host machine from which the session was spawned.
client_ids This property is required. Sequence[str]
The client identifier in each Oracle session.
client_programs This property is required. Sequence[str]
The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
db_user_names This property is required. Sequence[str]
Name of the database user whose actions were audited.
event_names This property is required. Sequence[str]
Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
object_types This property is required. Sequence[str]
Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
target_classes This property is required. Sequence[str]
Class of the target that was audited.
target_ids This property is required. Sequence[str]
The OCID of the target database that was audited.
target_names This property is required. Sequence[str]
The name of the target database that was audited.
auditEventTimes This property is required. List<String>
Time of audit event occurrence in the target database.
auditTypes This property is required. List<String>
Type of auditing.
clientHostnames This property is required. List<String>
Name of the host machine from which the session was spawned.
clientIds This property is required. List<String>
The client identifier in each Oracle session.
clientPrograms This property is required. List<String>
The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
dbUserNames This property is required. List<String>
Name of the database user whose actions were audited.
eventNames This property is required. List<String>
Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
objectTypes This property is required. List<String>
Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
targetClasses This property is required. List<String>
Class of the target that was audited.
targetIds This property is required. List<String>
The OCID of the target database that was audited.
targetNames This property is required. List<String>
The name of the target database that was audited.

Package Details

Repository
oci pulumi/pulumi-oci
License
Apache-2.0
Notes
This Pulumi package is based on the oci Terraform Provider.
Oracle Cloud Infrastructure v2.30.0 published on Monday, Apr 14, 2025 by Pulumi