Securing roles

In the recipe Preventing users from exercising system privileges on schema objects, you secured the table HR.EMPLOYEES by creating the HR_Realm realm, and afterwards, you edit it and made it mandatory. In this recipe, you'll learn to protect roles using a realm and a mandatory realm.

Getting ready

To complete this recipe, you'll need to use a SYS user.

How to do it...

Connect to the pluggable database PDB1 as a SYS user:
```
SQL> connect sys@pdb1 as sysdba
```
Create the role role1:
```
SQL> create role role1;
```
Grant the create session and select any table privileges to the role:
```
SQL> grant create session, select any table to role1;
```
Create realm ROLE1_Realm in Enterprise Manager Cloud Control 12c (see Figure 13).
Figure 13 - Creating ROLE1_Realm ...

Get Oracle Database 12c Security Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Oracle Database 12c Security Cookbook by Zoran Pavlović, Maja Veselica

Securing roles

Getting ready

How to do it...

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly