{[ promptMessage ]}

Bookmark it

{[ promptMessage ]}

11-Managing Privileges

11-Managing Privileges - Managing Privileges Presenter...

Info iconThis preview shows pages 1–13. Sign up to view the full content.

View Full Document Right Arrow Icon
Managing Privileges Presenter Tathagata Bhattacharjee
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Managing Privileges Tathagata Bhattacharjee Objectives After completing this lesson, you should be able to do the following Identify system and object privileges Grant and revoke privileges Identify auditing capabilities
Background image of page 2
Managing Privileges Tathagata Bhattacharjee Privileges A privilege is a right to execute a particular type of SQL statement or to access another user’s objects These include right to: Connect to a database Create a table Select rows from another user’s table Execute another user’s stored procedure
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Managing Privileges Tathagata Bhattacharjee Types of Privileges 1. System Privilege: Each system privilege allows a user to perform a particular database operation or class of database operations. E.g., the privilege to create tablespace is a system privilege 2. Object Privilege Each object privilege allows a user to perform a particular action on a specific object, such as a table, view, sequence, procedure, function or package
Background image of page 4
Managing Privileges Tathagata Bhattacharjee DBA’s control of privileges Providing a user the right to perform a type of operation Granting and revoking access to perform system functions Granting privileges directly to users or to roles Granting privileges to all users (PUBLIC)
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Managing Privileges Tathagata Bhattacharjee Privileges can be classified as follows: Privileges enabling system wide operations: e.g. CREATE SESSION, CREATE TABLESPACE Privileges enabling management of objects in a user’s own schema: e.g. CREATE TABLE Privileges enabling management of objects in any schema: e.g. CREATE ANY TABLE
Background image of page 6
Managing Privileges Tathagata Bhattacharjee System Privileges There are over 100 distinct system privileges The ANY keyword in the privilege signifies that users have the privilege in any schema The GRANT command adds a privilege to a user or a group of users The REVOKE command deletes the privileges
Background image of page 7

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Managing Privileges Tathagata Bhattacharjee System Privileges: Examples INDEX CREATE ANY INDEX ALTER ANY INDEX DROP ANY INDEX
Background image of page 8
Managing Privileges Tathagata Bhattacharjee TABLE CREATE TABLE CREATE ANY TABLE ALTER ANY TABLE DROP ANY TABLE SELECT ANY TABLE UPDATE ANY TABLE DELETE ANY TABLE
Background image of page 9

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Managing Privileges Tathagata Bhattacharjee SESSION CREATE SESSION ALTER SESSION RESTRICTED SESSION
Background image of page 10
Managing Privileges Tathagata Bhattacharjee TABLESPACE CREATE TABLESPACE ALTER TABLESPACE DROP TABLESPACE UNLIMITED TABLESPACE
Background image of page 11

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Managing Privileges Tathagata Bhattacharjee Granting System Privileges GRANT {system_privileges | role} [, {system_privileges | role} ] … TO {user | role | PUBLIC} [, {user | role | PUBLIC} ] … [WITH ADMIN OPTION] Where, System_privileges specifies the system privileges to be granted Role specifies the role to be granted PUBLIC grants privileges to all users WITH ADMIN OPTION enables the grantee to further grant the privileges or role to other users or roles
Background image of page 12
Image of page 13
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}