Securing roles
In the recipe Preventing users from exercising system privileges on schema objects, you secured the table HR.EMPLOYEES
by creating the HR_Realm
realm, and afterwards, you edit it and made it mandatory. In this recipe, you'll learn to protect roles using a realm and a mandatory realm.
Getting ready
To complete this recipe, you'll need to use a SYS
user.
How to do it...
- Connect to the pluggable database
PDB1
as aSYS
user:SQL> connect sys@pdb1 as sysdba
- Create the role
role1
:SQL> create role role1;
- Grant the
create session
andselect any table
privileges to the role:SQL> grant create session, select any table to role1;
- Create realm
ROLE1_Realm
in Enterprise Manager Cloud Control 12c (see Figure 13).
Get Oracle Database 12c Security Cookbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.