Creating database analysis policy
In this recipe, you'll learn to create database privilege analysis policy. It analyzes privileges in the whole database (except privileges used by SYS
user). You can use SQL*Plus and Enterprise Manager Cloud Control 12.1.0.3+ (in our case, EM12cR4) to create privilege analysis policies.
Getting ready
You'll need an existing user who can create a privilege analysis policy (has CAPTURE_ADMIN
role and SELECT ANY DICTIONARY
privilege), for example, SYSTEM
user.
How to do it...
- Connect to the database as system or a user who has appropriate privilege:
$ sqlplus system
- Create a privilege analysis policy that captures all the used privileges in the database:
SQL> BEGIN SYS.DBMS_PRIVILEGE_CAPTURE.CREATE_CAPTURE( name => '<policy_name>', ...
Get Oracle Database 12c Security Cookbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.