Unified auditing is enabled in your database. The HR_ADMIN and OE_ADMIN roles exist and are granted system
privileges.
You execute the command:
SQL>CREATE AUDIT POLICY tab1e_aud PRIVILEGES CREATE ANY TABLE, DROP ANY TABLE
ROLES
hr_admin, oe_admin;
Which statement is true?
A.
It succeeds and needs to be enabled to capture all SQL statements that require either the specified
privileges or any privilege granted to the HR_ADMIN and OE_ADMIN role.
B.
It fails because system privileges cannot be granted with roles in the same audit policy.
C.
It succeeds and starts capturing only successful SQL statements for all users who have either the specified
privileges or roles granted to them.
D.
It fails because the command does not specify when the unified audit policy should be enforced.
The correct answer should be A because after creating the unified audit policy, you will need to enable it with the AUDIT POLICY statement and apply the unified audit policies to users.
https://docs.oracle.com/database/121/DBSEG/audit_config.htm#DBSEG460
A
https://docs.oracle.com/database/121/DBSEG/audit_config.htm#DBSEG1086
If you are creating an audit policy, then use the AUDIT statement to enable it and optionally apply (or exclude) the audit settings to one or more users, including administrative users who log in with the SYSDBA administrative privilege (for example, the SYS user).
AUDIT also enables you to create an audit record upon an action’s success, failure, or both.