tailieunhanh - Managing RolesRoles

Oracle provides for easy and controlled privilege management through roles. Roles are named groups of related privileges that are granted to users or to other roles. They are designed to ease the administration of privileges in the database. Role characteristics Roles can be granted to and revoked from users with the same commands that are used to grant and revoke system privileges. Roles can be granted to any user or role. However, a role cannot be granted to itself and cannot be granted circularly. A role can consist of both system and object privileges. A role can be enabled or disabled for each user who. | Managing Roles Objectives After completing this lesson, you should be able to do the following: Create and modify roles Control availability of roles Remove roles Use predefined roles Obtain role information Users Privileges Roles UPDATE ON JOBS INSERT ON JOBS SELECT ON JOBS CREATE TABLE CREATE SESSION HR_CLERK HR_MGR A B C Roles Roles Oracle provides for easy and controlled privilege management through roles. Roles are named groups of related privileges that are granted to users or to other roles. They are designed to ease the administration of privileges in the database. Role characteristics Roles can be granted to and revoked from users with the same commands that are used to grant and revoke system privileges. Roles can be granted to any user or role. However, a role cannot be granted to itself and cannot be granted circularly. A role can consist of both system and object privileges. A role can be enabled or disabled for each user who is granted the role. A role can require a password to be enabled. Each role name must be unique among existing usernames and role names. Roles are not owned by anyone; and they are not in any schema. Roles have their descriptions stored in the data dictionary Easier privilege management Dynamic privilege management Selective availability of privileges Can be granted through the operating system Benefits of Roles Benefits of Roles Easier privilege management Use roles to simplify privilege management. Rather than granting the same set of privileges to several users, you can grant the privileges to a role, and then grant that role to each user. Dynamic privilege management If the privileges associated with a role are modified, all the users who are granted the role acquire the modified privileges automatically and immediately. Selective availability of privileges Roles can be enabled and disabled to turn privileges on and off temporarily. Enabling a role can also be used to verify that a user has been granted that role. Granting . | Managing Roles Objectives After completing this lesson, you should be able to do the following: Create and modify roles Control availability of roles Remove roles Use predefined roles Obtain role information Users Privileges Roles UPDATE ON JOBS INSERT ON JOBS SELECT ON JOBS CREATE TABLE CREATE SESSION HR_CLERK HR_MGR A B C Roles Roles Oracle provides for easy and controlled privilege management through roles. Roles are named groups of related privileges that are granted to users or to other roles. They are designed to ease the administration of privileges in the database. Role characteristics Roles can be granted to and revoked from users with the same commands that are used to grant and revoke system privileges. Roles can be granted to any user or role. However, a role cannot be granted to itself and cannot be granted circularly. A role can consist of both system and object privileges. A role can be enabled or disabled for each user who is granted the role. A role can require a .