1. Packages
  2. Oracle Cloud Infrastructure
  3. API Docs
  4. DataSafe
  5. getAuditEventAnalytic
Oracle Cloud Infrastructure v2.17.0 published on Friday, Nov 15, 2024 by Pulumi

oci.DataSafe.getAuditEventAnalytic

Explore with Pulumi AI

oci logo
Oracle Cloud Infrastructure v2.17.0 published on Friday, Nov 15, 2024 by Pulumi

    This data source provides details about a specific Audit Event Analytic resource in Oracle Cloud Infrastructure Data Safe service.

    By default ListAuditEventAnalytics operation will return all of the summary columns. To filter desired summary columns, specify it in the summaryOf query parameter.

    Example: /ListAuditEventAnalytics?summaryField=targetName&summaryField=userName&summaryField=clientHostName&summaryField &summaryField=dmls&summaryField=privilege_changes&summaryField=ddls&summaryField=login_failure&summaryField=login_success &summaryField=eventcount&q=(operationTime ge ‘2021-06-13T23:49:14’)&groupBy=targetName

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as oci from "@pulumi/oci";
    
    const testAuditEventAnalytic = oci.DataSafe.getAuditEventAnalytic({
        compartmentId: compartmentId,
        accessLevel: auditEventAnalyticAccessLevel,
        compartmentIdInSubtree: auditEventAnalyticCompartmentIdInSubtree,
        groupBies: auditEventAnalyticGroupBy,
        queryTimeZone: auditEventAnalyticQueryTimeZone,
        scimQuery: auditEventAnalyticScimQuery,
        summaryFields: auditEventAnalyticSummaryField,
        timeEnded: auditEventAnalyticTimeEnded,
        timeStarted: auditEventAnalyticTimeStarted,
    });
    
    import pulumi
    import pulumi_oci as oci
    
    test_audit_event_analytic = oci.DataSafe.get_audit_event_analytic(compartment_id=compartment_id,
        access_level=audit_event_analytic_access_level,
        compartment_id_in_subtree=audit_event_analytic_compartment_id_in_subtree,
        group_bies=audit_event_analytic_group_by,
        query_time_zone=audit_event_analytic_query_time_zone,
        scim_query=audit_event_analytic_scim_query,
        summary_fields=audit_event_analytic_summary_field,
        time_ended=audit_event_analytic_time_ended,
        time_started=audit_event_analytic_time_started)
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/DataSafe"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := DataSafe.GetAuditEventAnalytic(ctx, &datasafe.GetAuditEventAnalyticArgs{
    			CompartmentId:          compartmentId,
    			AccessLevel:            pulumi.StringRef(auditEventAnalyticAccessLevel),
    			CompartmentIdInSubtree: pulumi.BoolRef(auditEventAnalyticCompartmentIdInSubtree),
    			GroupBies:              auditEventAnalyticGroupBy,
    			QueryTimeZone:          pulumi.StringRef(auditEventAnalyticQueryTimeZone),
    			ScimQuery:              pulumi.StringRef(auditEventAnalyticScimQuery),
    			SummaryFields:          auditEventAnalyticSummaryField,
    			TimeEnded:              pulumi.StringRef(auditEventAnalyticTimeEnded),
    			TimeStarted:            pulumi.StringRef(auditEventAnalyticTimeStarted),
    		}, nil)
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Oci = Pulumi.Oci;
    
    return await Deployment.RunAsync(() => 
    {
        var testAuditEventAnalytic = Oci.DataSafe.GetAuditEventAnalytic.Invoke(new()
        {
            CompartmentId = compartmentId,
            AccessLevel = auditEventAnalyticAccessLevel,
            CompartmentIdInSubtree = auditEventAnalyticCompartmentIdInSubtree,
            GroupBies = auditEventAnalyticGroupBy,
            QueryTimeZone = auditEventAnalyticQueryTimeZone,
            ScimQuery = auditEventAnalyticScimQuery,
            SummaryFields = auditEventAnalyticSummaryField,
            TimeEnded = auditEventAnalyticTimeEnded,
            TimeStarted = auditEventAnalyticTimeStarted,
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.oci.DataSafe.DataSafeFunctions;
    import com.pulumi.oci.DataSafe.inputs.GetAuditEventAnalyticArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            final var testAuditEventAnalytic = DataSafeFunctions.getAuditEventAnalytic(GetAuditEventAnalyticArgs.builder()
                .compartmentId(compartmentId)
                .accessLevel(auditEventAnalyticAccessLevel)
                .compartmentIdInSubtree(auditEventAnalyticCompartmentIdInSubtree)
                .groupBies(auditEventAnalyticGroupBy)
                .queryTimeZone(auditEventAnalyticQueryTimeZone)
                .scimQuery(auditEventAnalyticScimQuery)
                .summaryFields(auditEventAnalyticSummaryField)
                .timeEnded(auditEventAnalyticTimeEnded)
                .timeStarted(auditEventAnalyticTimeStarted)
                .build());
    
        }
    }
    
    variables:
      testAuditEventAnalytic:
        fn::invoke:
          Function: oci:DataSafe:getAuditEventAnalytic
          Arguments:
            compartmentId: ${compartmentId}
            accessLevel: ${auditEventAnalyticAccessLevel}
            compartmentIdInSubtree: ${auditEventAnalyticCompartmentIdInSubtree}
            groupBies: ${auditEventAnalyticGroupBy}
            queryTimeZone: ${auditEventAnalyticQueryTimeZone}
            scimQuery: ${auditEventAnalyticScimQuery}
            summaryFields: ${auditEventAnalyticSummaryField}
            timeEnded: ${auditEventAnalyticTimeEnded}
            timeStarted: ${auditEventAnalyticTimeStarted}
    

    Using getAuditEventAnalytic

    Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

    function getAuditEventAnalytic(args: GetAuditEventAnalyticArgs, opts?: InvokeOptions): Promise<GetAuditEventAnalyticResult>
    function getAuditEventAnalyticOutput(args: GetAuditEventAnalyticOutputArgs, opts?: InvokeOptions): Output<GetAuditEventAnalyticResult>
    def get_audit_event_analytic(access_level: Optional[str] = None,
                                 compartment_id: Optional[str] = None,
                                 compartment_id_in_subtree: Optional[bool] = None,
                                 group_bies: Optional[Sequence[str]] = None,
                                 query_time_zone: Optional[str] = None,
                                 scim_query: Optional[str] = None,
                                 summary_fields: Optional[Sequence[str]] = None,
                                 time_ended: Optional[str] = None,
                                 time_started: Optional[str] = None,
                                 opts: Optional[InvokeOptions] = None) -> GetAuditEventAnalyticResult
    def get_audit_event_analytic_output(access_level: Optional[pulumi.Input[str]] = None,
                                 compartment_id: Optional[pulumi.Input[str]] = None,
                                 compartment_id_in_subtree: Optional[pulumi.Input[bool]] = None,
                                 group_bies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                                 query_time_zone: Optional[pulumi.Input[str]] = None,
                                 scim_query: Optional[pulumi.Input[str]] = None,
                                 summary_fields: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                                 time_ended: Optional[pulumi.Input[str]] = None,
                                 time_started: Optional[pulumi.Input[str]] = None,
                                 opts: Optional[InvokeOptions] = None) -> Output[GetAuditEventAnalyticResult]
    func GetAuditEventAnalytic(ctx *Context, args *GetAuditEventAnalyticArgs, opts ...InvokeOption) (*GetAuditEventAnalyticResult, error)
    func GetAuditEventAnalyticOutput(ctx *Context, args *GetAuditEventAnalyticOutputArgs, opts ...InvokeOption) GetAuditEventAnalyticResultOutput

    > Note: This function is named GetAuditEventAnalytic in the Go SDK.

    public static class GetAuditEventAnalytic 
    {
        public static Task<GetAuditEventAnalyticResult> InvokeAsync(GetAuditEventAnalyticArgs args, InvokeOptions? opts = null)
        public static Output<GetAuditEventAnalyticResult> Invoke(GetAuditEventAnalyticInvokeArgs args, InvokeOptions? opts = null)
    }
    public static CompletableFuture<GetAuditEventAnalyticResult> getAuditEventAnalytic(GetAuditEventAnalyticArgs args, InvokeOptions options)
    // Output-based functions aren't available in Java yet
    
    fn::invoke:
      function: oci:DataSafe/getAuditEventAnalytic:getAuditEventAnalytic
      arguments:
        # arguments dictionary

    The following arguments are supported:

    CompartmentId string
    A filter to return only resources that match the specified compartment OCID.
    AccessLevel string
    Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
    CompartmentIdInSubtree bool
    Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
    GroupBies List<string>
    A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
    QueryTimeZone string
    Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
    ScimQuery string

    The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

    Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

    SummaryFields List<string>
    Specifies a subset of summarized fields to be returned in the response.
    TimeEnded string
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    TimeStarted string
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    CompartmentId string
    A filter to return only resources that match the specified compartment OCID.
    AccessLevel string
    Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
    CompartmentIdInSubtree bool
    Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
    GroupBies []string
    A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
    QueryTimeZone string
    Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
    ScimQuery string

    The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

    Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

    SummaryFields []string
    Specifies a subset of summarized fields to be returned in the response.
    TimeEnded string
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    TimeStarted string
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    compartmentId String
    A filter to return only resources that match the specified compartment OCID.
    accessLevel String
    Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
    compartmentIdInSubtree Boolean
    Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
    groupBies List<String>
    A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
    queryTimeZone String
    Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
    scimQuery String

    The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

    Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

    summaryFields List<String>
    Specifies a subset of summarized fields to be returned in the response.
    timeEnded String
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    timeStarted String
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    compartmentId string
    A filter to return only resources that match the specified compartment OCID.
    accessLevel string
    Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
    compartmentIdInSubtree boolean
    Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
    groupBies string[]
    A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
    queryTimeZone string
    Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
    scimQuery string

    The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

    Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

    summaryFields string[]
    Specifies a subset of summarized fields to be returned in the response.
    timeEnded string
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    timeStarted string
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    compartment_id str
    A filter to return only resources that match the specified compartment OCID.
    access_level str
    Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
    compartment_id_in_subtree bool
    Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
    group_bies Sequence[str]
    A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
    query_time_zone str
    Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
    scim_query str

    The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

    Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

    summary_fields Sequence[str]
    Specifies a subset of summarized fields to be returned in the response.
    time_ended str
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    time_started str
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    compartmentId String
    A filter to return only resources that match the specified compartment OCID.
    accessLevel String
    Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
    compartmentIdInSubtree Boolean
    Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
    groupBies List<String>
    A groupBy can only be used in combination with summaryField parameter. A groupBy value has to be a subset of the values mentioned in summaryField parameter.
    queryTimeZone String
    Default time zone is UTC if no time zone provided. The date-time considerations of the resource will be in accordance with the specified time zone.
    scimQuery String

    The scimQuery query parameter accepts filter expressions that use the syntax described in Section 3.2.2.2 of the System for Cross-Domain Identity Management (SCIM) specification, which is available at RFC3339. In SCIM filtering expressions, text, date, and time values must be enclosed in quotation marks, with date and time values using ISO-8601 format. (Numeric and boolean values should not be quoted.)

    Example: query=(operationTime ge '2021-06-04T01-00-26') and (eventName eq 'LOGON')

    summaryFields List<String>
    Specifies a subset of summarized fields to be returned in the response.
    timeEnded String
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    timeStarted String
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.

    getAuditEventAnalytic Result

    The following output properties are available:

    CompartmentId string
    Id string
    The provider-assigned unique ID for this managed resource.
    Items List<GetAuditEventAnalyticItem>
    The aggregated data point items.
    AccessLevel string
    CompartmentIdInSubtree bool
    GroupBies List<string>
    QueryTimeZone string
    ScimQuery string
    SummaryFields List<string>
    TimeEnded string
    The time at which the aggregation ended.
    TimeStarted string
    The time at which the aggregation started.
    CompartmentId string
    Id string
    The provider-assigned unique ID for this managed resource.
    Items []GetAuditEventAnalyticItem
    The aggregated data point items.
    AccessLevel string
    CompartmentIdInSubtree bool
    GroupBies []string
    QueryTimeZone string
    ScimQuery string
    SummaryFields []string
    TimeEnded string
    The time at which the aggregation ended.
    TimeStarted string
    The time at which the aggregation started.
    compartmentId String
    id String
    The provider-assigned unique ID for this managed resource.
    items List<GetAuditEventAnalyticItem>
    The aggregated data point items.
    accessLevel String
    compartmentIdInSubtree Boolean
    groupBies List<String>
    queryTimeZone String
    scimQuery String
    summaryFields List<String>
    timeEnded String
    The time at which the aggregation ended.
    timeStarted String
    The time at which the aggregation started.
    compartmentId string
    id string
    The provider-assigned unique ID for this managed resource.
    items GetAuditEventAnalyticItem[]
    The aggregated data point items.
    accessLevel string
    compartmentIdInSubtree boolean
    groupBies string[]
    queryTimeZone string
    scimQuery string
    summaryFields string[]
    timeEnded string
    The time at which the aggregation ended.
    timeStarted string
    The time at which the aggregation started.
    compartment_id str
    id str
    The provider-assigned unique ID for this managed resource.
    items Sequence[datasafe.GetAuditEventAnalyticItem]
    The aggregated data point items.
    access_level str
    compartment_id_in_subtree bool
    group_bies Sequence[str]
    query_time_zone str
    scim_query str
    summary_fields Sequence[str]
    time_ended str
    The time at which the aggregation ended.
    time_started str
    The time at which the aggregation started.
    compartmentId String
    id String
    The provider-assigned unique ID for this managed resource.
    items List<Property Map>
    The aggregated data point items.
    accessLevel String
    compartmentIdInSubtree Boolean
    groupBies List<String>
    queryTimeZone String
    scimQuery String
    summaryFields List<String>
    timeEnded String
    The time at which the aggregation ended.
    timeStarted String
    The time at which the aggregation started.

    Supporting Types

    GetAuditEventAnalyticItem

    Count string
    Total count of aggregated value.
    Dimensions List<GetAuditEventAnalyticItemDimension>
    Details of aggregation dimensions used for summarizing audit events.
    DisplayName string
    Display Name of aggregation field.
    MetricName string
    Name of the aggregation.
    TimeEnded string
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    TimeStarted string
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    Count string
    Total count of aggregated value.
    Dimensions []GetAuditEventAnalyticItemDimension
    Details of aggregation dimensions used for summarizing audit events.
    DisplayName string
    Display Name of aggregation field.
    MetricName string
    Name of the aggregation.
    TimeEnded string
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    TimeStarted string
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    count String
    Total count of aggregated value.
    dimensions List<GetAuditEventAnalyticItemDimension>
    Details of aggregation dimensions used for summarizing audit events.
    displayName String
    Display Name of aggregation field.
    metricName String
    Name of the aggregation.
    timeEnded String
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    timeStarted String
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    count string
    Total count of aggregated value.
    dimensions GetAuditEventAnalyticItemDimension[]
    Details of aggregation dimensions used for summarizing audit events.
    displayName string
    Display Name of aggregation field.
    metricName string
    Name of the aggregation.
    timeEnded string
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    timeStarted string
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    count str
    Total count of aggregated value.
    dimensions Sequence[datasafe.GetAuditEventAnalyticItemDimension]
    Details of aggregation dimensions used for summarizing audit events.
    display_name str
    Display Name of aggregation field.
    metric_name str
    Name of the aggregation.
    time_ended str
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    time_started str
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.
    count String
    Total count of aggregated value.
    dimensions List<Property Map>
    Details of aggregation dimensions used for summarizing audit events.
    displayName String
    Display Name of aggregation field.
    metricName String
    Name of the aggregation.
    timeEnded String
    An optional filter to return audit events whose creation time in the database is less than and equal to the date-time specified, in the format defined by RFC3339.
    timeStarted String
    An optional filter to return audit events whose creation time in the database is greater than and equal to the date-time specified, in the format defined by RFC3339.

    GetAuditEventAnalyticItemDimension

    AuditEventTimes List<string>
    Time of audit event occurrence in the target database.
    AuditTypes List<string>
    Type of auditing.
    ClientHostnames List<string>
    Name of the host machine from which the session was spawned.
    ClientIds List<string>
    The client identifier in each Oracle session.
    ClientPrograms List<string>
    The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
    DbUserNames List<string>
    Name of the database user whose actions were audited.
    EventNames List<string>
    Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
    ObjectTypes List<string>
    Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
    TargetClasses List<string>
    Class of the target that was audited.
    TargetIds List<string>
    The OCID of the target database that was audited.
    TargetNames List<string>
    The name of the target database that was audited.
    AuditEventTimes []string
    Time of audit event occurrence in the target database.
    AuditTypes []string
    Type of auditing.
    ClientHostnames []string
    Name of the host machine from which the session was spawned.
    ClientIds []string
    The client identifier in each Oracle session.
    ClientPrograms []string
    The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
    DbUserNames []string
    Name of the database user whose actions were audited.
    EventNames []string
    Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
    ObjectTypes []string
    Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
    TargetClasses []string
    Class of the target that was audited.
    TargetIds []string
    The OCID of the target database that was audited.
    TargetNames []string
    The name of the target database that was audited.
    auditEventTimes List<String>
    Time of audit event occurrence in the target database.
    auditTypes List<String>
    Type of auditing.
    clientHostnames List<String>
    Name of the host machine from which the session was spawned.
    clientIds List<String>
    The client identifier in each Oracle session.
    clientPrograms List<String>
    The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
    dbUserNames List<String>
    Name of the database user whose actions were audited.
    eventNames List<String>
    Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
    objectTypes List<String>
    Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
    targetClasses List<String>
    Class of the target that was audited.
    targetIds List<String>
    The OCID of the target database that was audited.
    targetNames List<String>
    The name of the target database that was audited.
    auditEventTimes string[]
    Time of audit event occurrence in the target database.
    auditTypes string[]
    Type of auditing.
    clientHostnames string[]
    Name of the host machine from which the session was spawned.
    clientIds string[]
    The client identifier in each Oracle session.
    clientPrograms string[]
    The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
    dbUserNames string[]
    Name of the database user whose actions were audited.
    eventNames string[]
    Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
    objectTypes string[]
    Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
    targetClasses string[]
    Class of the target that was audited.
    targetIds string[]
    The OCID of the target database that was audited.
    targetNames string[]
    The name of the target database that was audited.
    audit_event_times Sequence[str]
    Time of audit event occurrence in the target database.
    audit_types Sequence[str]
    Type of auditing.
    client_hostnames Sequence[str]
    Name of the host machine from which the session was spawned.
    client_ids Sequence[str]
    The client identifier in each Oracle session.
    client_programs Sequence[str]
    The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
    db_user_names Sequence[str]
    Name of the database user whose actions were audited.
    event_names Sequence[str]
    Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
    object_types Sequence[str]
    Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
    target_classes Sequence[str]
    Class of the target that was audited.
    target_ids Sequence[str]
    The OCID of the target database that was audited.
    target_names Sequence[str]
    The name of the target database that was audited.
    auditEventTimes List<String>
    Time of audit event occurrence in the target database.
    auditTypes List<String>
    Type of auditing.
    clientHostnames List<String>
    Name of the host machine from which the session was spawned.
    clientIds List<String>
    The client identifier in each Oracle session.
    clientPrograms List<String>
    The application from which the audit event was generated. Examples SQL Plus or SQL Developer.
    dbUserNames List<String>
    Name of the database user whose actions were audited.
    eventNames List<String>
    Name of the detail action executed by the user on the target database. i.e ALTER SEQUENCE, CREATE TRIGGER, CREATE INDEX.
    objectTypes List<String>
    Type of object in the source database affected by the action. i.e PL/SQL, SYNONYM, PACKAGE BODY.
    targetClasses List<String>
    Class of the target that was audited.
    targetIds List<String>
    The OCID of the target database that was audited.
    targetNames List<String>
    The name of the target database that was audited.

    Package Details

    Repository
    oci pulumi/pulumi-oci
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the oci Terraform Provider.
    oci logo
    Oracle Cloud Infrastructure v2.17.0 published on Friday, Nov 15, 2024 by Pulumi