CREATE ROLE admin_role; CREATE ROLE user_role; GRANT SELECT, INSERT, UPDATE, DELETE ON table1 TO admin_role; GRANT SELECT ON table2 TO user_role; GRANT admin_role TO user1; GRANT user_role TO user2; CREATE SECURITY POLICY pol1 WITH LABEL BASE; ALTER TABLE table1 ADD SECURITY LABEL 'Confidential'; ALTER TABLE table2 ADD SECURITY LABEL 'Secret'; GRANT SECURITY LABEL 'Confidential' TO user1; GRANT SECURITY LABEL 'Secret' TO user2; SET AUDIT STATE ON; CREATE AUDIT POLICY pol2 FOR TABLE table1, table2 WITH CHECK; SET AUDIT POLICY pol2 FOR TABLE table1, table2 EXCEPT EXECUTE; GRANT AUDIT ON table1 TO user1; GRANT AUDIT ON table2 TO user2;