I believe that here, deprived of the various elements and object privileges and individual user name. As already mentioned, always follow the "least privilege" as the absolute minimum rights for each user ID database. In order to facilitate the overall cost of administration and maintenance, you can try to give the reactions of the privileges, even new users. However, users do not know important safety and not wanting to reveal their passwords to other users that may be used for criminal purposes, such as typical: a disgruntled employee to resign. To simplify this privilege Oracle pool to enjoy the privileges and roles allowed if necessary. To simplify the administrative tasks of the business environment consisting of multiple applications and databases worldwide Oracle8 provides firewall functions should be defined, can be defined centrally and implemented locally in a database. For example, you can define the global role of the manager, "are composed of different functions in each database. So you can CHANGE_PAY Administrator role based global database of payroll, while they may play a role CHECK_INVENTORY the basis of the list. Thus, the new leader to join a company that is readily available on paper, and after the merger to pay for the database, the change in wages, but if you connect to the basic data on populations you can check the current inventory. Ideally, the privilege of leadership positions is fine. In the previous version of Oracle stored procedures, but performance rights through roles are translated into execution, in which the roles and rights in a real environment. In any case, the use of the database necessary to (understand, if they have additional rights beyond what you think is necessary to identify monitored at regular intervals in the database along with them their real needs), users and grant / cancel the powers and functions, respectively. Oracle offers a decent review mechanism to monitor the commands that are executed by users at different times. This feature is particularly useful in monitoring suspicious activities in the database. (Once again, the number of users / applications to databases through user identification, the standard configuration, the control does not help us much. In these cases, but you can define a write operation feeds the different tables and columns in the magazine critical machine v $ session OSUS separate boards, but this approach limits only the action in this matter. "is not yet possible to identify, DDL), but with the air control system and can affect performance. Therefore, only use if necessary. Gitesh Trivedi has 14+ years of experience and author of technical writing of Support For Oracle and also author of Online Oracle Courses with live instructor and without live instructor based trainings.
Related Articles -
oracle user privileges, oracle roles, oracle administration, privileges oracle, grant privilege oracle, sql grant,
|