Label:Oracle Commands: Authorization-REVOKE permissions-RolesOracle Grant Regardless of the permissions granted, each authorization (grant) statement is always made up of three parts: 1) The recipient section is a list of one or more users who are ready to get permission. 2) The Keyword Permission section consists of grant
tablespace_name[Account Lock/unlock]Grant connect to user_name;Grant CREATE table to Suer_name;Grant update on TABLE_NAME to user_name;Revoke CREATE table from user_name;Revoke update on TABLE_NAME from USER_NAME; What are the usual ways to view current users in
user authorization and management. The practice is to group users by their functions, create roles for each user, and assign roles to users. users with the same roles have the same privileges.
2.2 user management
The content of ORACLE user management mainly includes User Creation, modification and deletion.
User CreationSQL> CREATE USER jxzy
> Identified by jxzy_password
> Default tablespace system
> QUATA 5 m on system; // maximum space limit for us
current userSelect * fromUser_tab_privs;//to view the permissions used by the user on the tablevii. Table of users of the action table/*You need to precede the table name with a user name, as follows*/ Select * fromZhangsan.tablenameEight, permission pass that is, user A will grant B,B permission to grant the permission of the operation to C again, the command is as follows:GrantAlertTable onTableName t
the room but not the key to enter the big door ...)Therefore, the corresponding permissions should also be granted.SQL> grant unlimited tablespace to test;At this time, the user has the permission to create a table. Because the table is corresponding to the user test, he has the permission to add, query, modify, and delete the created table.3. view what permissions a user has to query a System View (digital dictionary)SQL> select * from user_sys_priv
sequence, create stored procedure and CREATE VIEW permissions grant Create Table,create sequence,create view, Create Procedureto saml Remove user rights --Remove user Sam permissions to create a view revoke creation view from Sam;l assigning role permissions --assigning roles Manag Er Create a table, create a sequence of permissions grant create table,create seq
, create sequences, create stored procedures, and create views. grant create table, create sequence, create view, create procedureto sam l remove user permissions -- remove permissions of user Sam to create views revoke create view from sam; l assign role permissions -- assign role manager to create tables and create sequence permissions grant create table, creat
deletions cannot be controlled to columnsInsert update insert with commit requiredTransfer of permissionsSystem permissions are passed:Grant ALTER TABLE to A with admin option;Then a can pass this permission to B, if you want B can also be passed down so can also take with admin optionGrant ALTER TABLE to B;Object permissions are passed:Grant SELECT on Mytab to A with GRANT
Three default system users
Username and password
Sys change_on_install (highest Network Administrator)
Manager system local administrator
Scott tiger common user
1. Start the cmd command of the Oracle listener:
1: name of the lsnrctl start listener (not to be written)
2: Start the data instance oradim-startup-sid dataname (Instance name)
2. Log On with the highest user in sys
Sqlplus sys as sysdba (sqlplus username/password @ connection_String)
Create
Execute on to User1 Table Space Alter User default tablespace app; Restrict modified columns Grant Update on to User1 Revoke permissions Revoke Insert on from User1 Third, other aspects What permissions the role has Select * from where role='xujin'; What permissions the user has Select * from where grantee=Upper(' user name ') With admin
Oracle creates a view and opens permissions to users. To improve query efficiency, you can consider opening a view for users in other companies. www.2cto.com 1. create or replace view test_table_v as select t1, t2, t3, t4, t5 from test_table 2. create the user SQL code to access this view -- create the user Create user TEST_USER default tablespace using ZH temporary tablespace TEMP profile DEFAULT; -- Grant
1.select * from Dba_users; --Querying all users in the database2.GRANT SELECT on TableName to username;--authorization query (delegate the query rights of the table TableName to UserName)Grant insert on TableName to username;--authorization insertion (delegate the right to insert the table TableName to UserName)Grant update on TableName to username;--authorized u
Oracle authorized grant, oraclegrant
GRANTPrivilege[,...]ONObject[(Column[,...])] [,...]TO {PUBLIC |Username[,...]} [With grant option]These fields are compatible with ipvs implementation, except for the following exceptions:PrivilegeSQL92 allows declaring additional permissions: select references allows certain or al
The individual understands Oracle permissions as three classes, System permissions, object permissions, and session permissions.Correspond separately:Dba_sys_privs;Dba_tab_privs:Session_privs;
Of course there's role,
Dba_role_privs;Role_sys_privs;
Distinction is very good distinction, create,execute, such as system permissions, update, etc. belong to object permissions.
+++++++++++++++++++++++++++++++++++++++++++How to view a user and what role it has
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.