Managing Roles - Managing Roles Roles can consist of both...

Info iconThis preview shows pages 1–2. Sign up to view the full content.

View Full Document Right Arrow Icon
Managing Roles Roles can consist of both system and object privileges. Roles can be granted to any user or role except to themselves. Roles can be enables or disabled for each user who has been granted a role. Each role name must be unique among the existing usernames and role names. Roles are not owned by any user nor present in any schema. Role descriptions are stored in the data dictionary. Roles are granted and revoked from users with same commands that are used to grant and revoke system privileges. Benefits of Roles: Reduces granting of privileges Facilitates dynamic managing of privileges Provides selective availability of privileges Permits granting using the operating system Avoids any cascading effect Reduces the number of GRANT commands in the data dictionary Reduces the number of privileges to be verified by disabling roles CREATE ROLE MGR IDENTIFIED BY MANAGER; RESOURCE- provides access to system resources CONNECT- enables user to create a session DBA- provides all system privileges using the WITH ADMIN OPTION
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 2
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 02/25/2010 for the course MAT 443 taught by Professor Roberts during the Winter '10 term at University of Arizona- Tucson.

Page1 / 2

Managing Roles - Managing Roles Roles can consist of both...

This preview shows document pages 1 - 2. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online