Resolution
fact
VigilEnt Audit Manager for Oracle 3.2 SP1
fact
VigilEnt Audit Manager for Oracle 3.2 SP6
symptom
Error: 'ORA-28103 adding a policy to an object owned by SYS is not allowed.'
cause
Oracle does not allow any security policies (triggers) to be placed on objects owned by SYS. In certain cases, the listed versions of VigilEnt Audit Manager would allow the creation of user-defined audits (triggers). However, since this is a prohibited action in Oracle, the user-defined trigger will remain invalid. This error will be produced when an attempt is made to modify or delete this trigger through the VigilEnt Audit Manager for Oracle console.
fix
The following SQL statement can be used to remove the invalid user-defined audit from the VigilEnt Audit Manager table.
VigilEnt Audit Manager for Oracle 3.2 SP1
fact
VigilEnt Audit Manager for Oracle 3.2 SP6
symptom
Error: 'ORA-28103 adding a policy to an object owned by SYS is not allowed.'
cause
Oracle does not allow any security policies (triggers) to be placed on objects owned by SYS. In certain cases, the listed versions of VigilEnt Audit Manager would allow the creation of user-defined audits (triggers). However, since this is a prohibited action in Oracle, the user-defined trigger will remain invalid. This error will be produced when an attempt is made to modify or delete this trigger through the VigilEnt Audit Manager for Oracle console.
fix
The following SQL statement can be used to remove the invalid user-defined audit from the VigilEnt Audit Manager table.
Delete from sqlcqr.sqlcqr_usraudit_config where name = 'Audit_Name';
Replace 'Audit_Name' with the name of the invalid audit.
Additional Information
Formerly known as NETIQKB30036