Is there a way to restrict or revoke all permission on SYS.AUD$ table from a user which has DBA role or select any table/delete any table privileges.
As per our company policy apart from auditors/reviwers, no one else should be allowed to view/delete any of the auditing records which are being stored in SYS.AUD$ table.
we need to ensure that the system administrator(except SYS and SYSTEM) with DBA role should not be able to modify/delete/truncated the SYS.AUD$ table. Only the Reviewer should have access to the audit tables?..similar to what we enforce in Sybase. For example, in Sybase you cannot view auditing records until and unless sso_role has been granted to you.
Please advise whether we can comply with this requirement in Oracle.