Users, roles and privileges in Oracle

Posted in Community :

Oracle Applications

	Users, roles and privileges in Oracle By : SACHIN SAXENA, Financial Analyst IKANOS Communication India Pvt. Ltd.
	Industry : IT Services Functional Area : Channel Management Keywords : Oracle Roles Users Privileges Activity: 0 comments 2191 views last activity : 07 06 2010 20:18:04 +0000

Refer 4

Rate :

Privileges

A privilege is a right to execute an SQL statement or to access another user's object. In Oracle, there are two types of privileges: system privileges and object privileges. A privileges can be assigned to a user or a role

The set of privileges is fixed, that is, there is no SQL statement like create privilege xyz...

System privileges

There are quite a few system privileges: in Oracle 9.2, we count 157 of them, and 10g

Executing this statement, we find privileges like create session, drop user, alter database, see system privileges.

System privileges can be audited.

Arguably, the most important system privileges are:

create session (A user cannot login without this privilege. If he tries, he gets an ORA-01045).
create table
create view
create procedure
sysdba
sysoper

Object privileges

privileges can be assigned to the following types of database objects:

Tables
select, insert, update, delete, alter, debug, flashback, on commit refresh, query rewrite, references, all
Views
select, insert, update, delete, under, references, flashback, debug
Sequence
alter, select
Packeges, Procedures, Functions (Java classes, sources...)
execute, debug
Materialized Views
delete, flashback, insert, select, update
Directories
read, write
Libraries
execute
User defined types
execute, debug, under
Operators
execute
Indextypes
execute

For a user to be able to access an object in another user's schema, he needs the according object privilege.

Object privileges can be displayed using all_tab_privs_made or user_tab_privs_made.

Public

If a privilege is granted to the special role public, this privilege can be executed by all other users. However, sysdba cannot be granted to public.

Users

to be finished ...

Roles

Predefined Roles

Along with the installation, more exactly with the creation of an oracle database, Oracle creates predefined roles. These are:

connect, resource, dba
These might not be created anymore in future versions of Oracle.
Oracle 9.2 grants create session, alter session, create synonym, create view, create database link, create table, create cluster and create sequence to connect.
It also grants create table , create cluster, create sequence, create trigger create procedure, create type, create indextype and create operator to resource.
The role dba gets basically everything and that with admin option.
delete_catalog_role, execute_catalog_role, select_catalog_role
Accessing data dictionary views (v$ views and static dictionary views)
exp_full_database, imp_full_database
This role is needed to export objects found in another user's schema.
aq_user_role, aq_administrator_role, global_aq_user_role(?)
logstdby_administrator
snmpagent
recovery_catalog_owner
hs_admin_role
oem_monitor, oem_advisor
scheduler_admin
gather_system_statistics
plustrace
xdbadmin
xdbwebservices
ctxapp

Assigning privileges to users and roles

A privilege can be assigned to a user with the grant sql statment. On the other hand, revoke allows to take away such privileges from users and roles.

Oracle stores the granted privileges in its data dictionary.

Displaying the relationship between users, roles and privileges

Use this script to recursively list users, granted roles and privileges.

go to top

0 comments on "Users, roles and privileges in Oracle"

Sort by: Most Recent Top Rated

Add your comment on "Users, roles and privileges in Oracle"

Add Web reference, Image, Video, Blog reference, From your blog, RSS feeds and News search results by using Research Assistant.


Rate: 1 2 3 4 5	Saving comment ... Submit

Found the article "Users, roles and privileges in Oracle" interesting ? Share with your connections and communities

Leading executive search firm

Create a confidential Career Profile and Resume/C.V. online
Get advice for planning their career and for marketing of experience and skills
Maximize awareness of and access to the best career opportunities

Viewers also viewed

	ERP Shodown: SAP ERP vs Oracle ERP
	The ongoing fight for business applications supremacy between Oracle and SAP AG has been long and...
	274 referals 17 arguments, 2527 views

	SQL SERVER 2008 OR ORACLE...Which is better?
	SQL SERVER VS ORACLE
	3 referals 10 arguments, 189 views

	Oracle Practice from Xenosoft Technologies Inc
	Dear Elite Members, XT Global provides services such as: Oracle e-business implementation...
	0 referals 0 comments, 10 views

SQL Server vs Oracle

What should be a Too step user?

Is it worth having diplomatic ties with Pakistan or should they be broken?

more...

Recent Knowledge (218)

	The Killer called "We will get back to you"
	In many interviews where we are not selected, instead of getting it straight the interviewer...
	86 referals 6 comments, 137 views

	Apple a bit bitten but not fully eaten
	Hackers are at it in full swing. There next stop was Apple.. AntiSec hackers group stole 26 user...
	1893 referals 8 comments, 100 views

	Humility - A story
	In spite of remarkable achievements in various fields, man is unhappy. But everything will be...
	2220 referals 34 comments, 433 views

Performance management process

more...

Full name*:
Email address*:
New password*:
	Sign Up or Log In
By clicking 'Sign Up' above you are agreeing to the Terms of Service and Privacy Policy of TooStep