Scribd Logo
Fazer o upload

Bem-vindo(a) ao Scribd!

  • Less 07

    Enviado por

    akdenizerdem
    15 visualizações20 páginas
    Create and manage Database User Accounts create and manage roles grant and revoke privileges Control resource usage by users Copyright (c) 2004, Oracle. All rights reserved. Profiles and Users users are assigned only one profile at any given time.

    Descrição original:

    Título original

    less_07.ppt

    Direitos autorais

    © Attribution Non-Commercial (BY-NC)

    Formatos disponíveis

    PPT, PDF, TXT ou leia online no Scribd

    Você considera este documento útil?

    Este conteúdo é inapropriado?

    Denunciar este documento
    Create and manage Database User Accounts create and manage roles grant and revoke privileges Control resource usage by users Copyright (c) 2004, Oracle. All rights reserved. Profiles and Users users are assigned only one profile at any given time.

    Direitos autorais:

    Attribution Non-Commercial (BY-NC)
    Baixe no formato PPT, PDF, TXT ou leia online no Scribd
    Sinalizar o conteúdo como inadequado
    15 visualizações20 páginas

    Less 07

    Enviado por

    akdenizerdem
    Create and manage Database User Accounts create and manage roles grant and revoke privileges Control resource usage by users Copyright (c) 2004, Oracle. All rights reserved. Profiles and Users users are assigned only one profile at any given time.

    Direitos autorais:

    Attribution Non-Commercial (BY-NC)
    Baixe no formato PPT, PDF, TXT ou leia online no Scribd
    Sinalizar o conteúdo como inadequado
    de 20

    Administering Users

    Copyright 2004, Oracle. All rights reserved.

    Objectives

    After completing this lesson, you should be able to do the following: Create and manage database user accounts Create and manage roles Grant and revoke privileges Control resource usage by users

    7-2

    Copyright 2004, Oracle. All rights reserved.

    Database User Accounts

    Each database user account has a: Unique username Authentication method Default tablespace Temporary tablespace User profile

    7-3

    Copyright 2004, Oracle. All rights reserved.

    Creating a User

    Select Users from the Administration properties page. Click the Create button.

    7-4

    Copyright 2004, Oracle. All rights reserved.

    Profiles and Users

    Users are assigned only one profile at any given time. Profiles: Control resource consumption Manage passwords

    7-5

    Copyright 2004, Oracle. All rights reserved.

    Authenticating Users
    Password External Global

    7-7

    Copyright 2004, Oracle. All rights reserved.

    Default and Temporary Tablespaces and Locking


    Default: Default location of database objects Temporary: Used for sorting

    7-9

    Copyright 2004, Oracle. All rights reserved.

    Database Users and Schemas

    The collection of objects owned by a user is the schema.


    A user can be associated with only one schema. Username and schema are often used interchangeably.

    Schema Objects

    Tables
    Triggers Indexes Views

    Sequences
    Stored program units Synonyms User-defined data types

    Database links

    7-10

    Copyright 2004, Oracle. All rights reserved.

    Checklist for Creating Users


    Select a profile. Select an authentication technique. Assign a default tablespace and temporary tablespace. Grant privileges and roles to the user. Decide on quotas for each tablespace.

    7-11

    Copyright 2004, Oracle. All rights reserved.

    Privileges

    There are two types of user privileges: System: Enables users to perform particular actions in the database Object: Enables users to access and manipulate a specific object

    7-12

    Copyright 2004, Oracle. All rights reserved.

    System Privileges

    7-13

    Copyright 2004, Oracle. All rights reserved.

    Object Privileges

    To grant object privileges: Choose the object type Select objects Select privileges

    7-15

    Copyright 2004, Oracle. All rights reserved.

    Assigning Quota to Users

    Users who do not have the unlimited tablespace system privilege must be given a quota before they can create objects in a tablespace. Quotas can be: Unlimited A specific value in megabytes or kilobytes

    7-16

    Copyright 2004, Oracle. All rights reserved.

    Assigning Roles to Users

    7-17

    Copyright 2004, Oracle. All rights reserved.

    Roles
    Users

    Neena

    Girard

    Vance

    Roles

    HR_MGR

    HR_CLERK

    Privileges

    Delete employees Insert employees

    Select employees

    Update employees

    7-18

    Copyright 2004, Oracle. All rights reserved.

    Benefits of Roles

    Easier privilege management Dynamic privilege management Selective availability of privileges Can be granted through the operating system

    7-19

    Copyright 2004, Oracle. All rights reserved.

    Predefined Roles
    CONNECT CREATE SESSION, CREATE TABLE, CREATE VIEW, CREATE SYNONYM, CREATE SEQUENCE, CREATE DATABASE LINK, CREATE CLUSTER, ALTER SESSION
    CREATE TABLE, CREATE PROCEDURE, CREATE SEQUENCE, CREATE TRIGGER, CREATE TYPE, CREATE CLUSTER, CREATE INDEXTYPE, CREATE OPERATOR CREATE ANY JOB, CREATE JOB, EXECUTE ANY CLASS, EXECUTE ANY PROGRAM, MANAGE SCHEDULER Most system privileges, several other roles. Do not grant to nonadministrators. No system privileges but over 1600 object privileges on the data dictionary

    RESOURCE

    SCHEDULER_ ADMIN DBA SELECT_ CATALOG_ ROLE


    7-20

    Copyright 2004, Oracle. All rights reserved.

    Secure Roles
    Roles may be nondefault.
    SET ROLE vacationdba;

    Roles may be protected through authentication.

    Roles may also be secured programmatically.


    CREATE ROLE secure_application_role IDENTIFIED USING <security_procedure_name>;
    7-21

    Copyright 2004, Oracle. All rights reserved.

    Summary

    In this lesson you should have learned how to: Create and manage user accounts Create and manage roles Grant and revoke privileges Control resource usage by users

    7-22

    Copyright 2004, Oracle. All rights reserved.

    Practice 7: Administering Users


    This practice covers the following: Creating a profile to limit resource consumption Creating two roles:
    a. HRCLERK b. HRMANAGER

    Creating three new users, one manager, and two clerks

    7-23

    Copyright 2004, Oracle. All rights reserved.

    Você também pode gostar