1 / 20

Administering Users

Administering Users. Objectives. After completing this lesson, you should be able to do the following: Create and manage database user accounts Create and manage roles Grant and revoke privileges Control resource usage by users. Database User Accounts. Each database user account has a:

kittyf
Download Presentation

Administering Users

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Administering Users

  2. Objectives • After completing this lesson, you should be able to do the following: • Create and manage database user accounts • Create and manage roles • Grant and revoke privileges • Control resource usage by users

  3. Database User Accounts • Each database user account has a: • Unique username • Authentication method • Default tablespace • Temporary tablespace • User profile

  4. Creating a User • Select Users from the Administration properties page. Click the Create button.

  5. Profiles and Users • Users are assigned only one profile at any given time. • Profiles: • Control resource consumption • Manage passwords

  6. Authenticating Users • Password • External • Global

  7. Default and Temporary Tablespaces and Locking • Default: Default location of database objects • Temporary: Used for sorting

  8. Database Users and Schemas • The collection of objects owned by a user is the schema. • A user can be associated with only one schema. • Username and schema are often used interchangeably. Schema Objects Tables Triggers Indexes Views Sequences Stored program units Synonyms User-defined data types Database links

  9. Checklist for Creating Users • Select a profile. • Select an authentication technique. • Assign a default tablespace and temporary tablespace. • Grant privileges and roles to the user. • Decide on quotas for each tablespace.

  10. Privileges • There are two types of user privileges: • System: Enables users to perform particular actions in the database • Object: Enables users to access and manipulate a specific object

  11. System Privileges

  12. Object Privileges • To grant object privileges: • Choose the object type • Select objects • Select privileges

  13. Assigning Quota to Users • Users who do not have the unlimited tablespace system privilege must be given a quota before they can create objects in a tablespace. Quotas can be: • Unlimited • A specific value in megabytes or kilobytes

  14. Assigning Roles to Users

  15. Roles Users Neena Girard Vance Roles HR_CLERK HR_MGR Delete employees Select employees Update employees Privileges Insert employees

  16. Benefits of Roles • Easier privilege management • Dynamic privilege management • Selective availability of privileges • Can be granted through the operating system

  17. Predefined Roles

  18. Secure Roles • Roles may be nondefault. • Roles may be protected through authentication. SET ROLE vacationdba; • Roles may also be secured programmatically. CREATE ROLE secure_application_role IDENTIFIED USING <security_procedure_name>;

  19. Summary • In this lesson you should have learned how to: • Create and manage user accounts • Create and manage roles • Grant and revoke privileges • Control resource usage by users

  20. Practice 7: Administering Users • This practice covers the following: • Creating a profile to limit resource consumption • Creating two roles: a. HRCLERK b. HRMANAGER • Creating three new users, one manager, and two clerks

More Related