Reporting on used object privileges
In this recipe, you'll view collected data about the usage of object privileges during the capture interval.
Getting ready
You'll need an existing user who can create a privilege analysis policy (has the CAPTURE_ADMIN
role and the SELECT ANY DICTIONARY
privilege), for example, the SYSTEM
user.
How to do it...
- Connect to the database as system or a user who has appropriate privileges:
$ sqlplus system
- View which object privileges the user
Alan
has used while database policyALL_PRIV_POL
has been active. - View grant path by querying
DBA_USED_OBJPRIVS_PATH
:
Get Oracle Database 12c Security Cookbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.