Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

privileges inbulit schemas have

Posted on 2001-07-22
4
Medium Priority
?
1,044 Views
Last Modified: 2008-02-26
soctt/tiger is a default schema of oracle. Are privileges granted to it individually, via a role or automatically as part of the installation process. Same is my question on any of the following schemas. Please indicate which of them have DBA privileges.

SYS, SYSTEM, OUTLN, DBSNMP, AURORA$ORB$UNAUTHENTICATED,ORDSYS,ORDPLUGINS,MDSYS, CTXSYS, ADAMS,JONES, CLARK and BLAKE.

How to know all the privileges assigned to the above schemas. Can we grant/revoke to/from individually or as as a role. Please be elaborate so that i can grade immediately. Can you tell me the difference between a schema and a user.    
                         
                     
                           
                       

                           
                           
0
Comment
Question by:k_murli_krishna
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 6

Expert Comment

by:bira
ID: 6305839
0
 
LVL 3

Accepted Solution

by:
doronla earned 120 total points
ID: 6305944
Hello sir,

First, user and schema are basically the same thing. When you talk about the password,profile,privileges, etc. you talk about a "user". When you reference tables and other objects, this is a schema. Every user that has the CONNECT role has the privilege to create tables, indexes and other basic objects in his schema. Another term in this conversation is the "OWNER" which is, again, another name for the same thing. This sentence summarize all: "The user scott, which tiger is its password,is the owner of the objects in his schema, such as the table emp".
To access a table in another schema you need to write: schema.table . if the table is in your own schema, table name is enough.

Every user have unlimited privileges to objeects in its one schema. Scott has no priv at all! no role granted at all! All objects are in his schema.

about privs, you can easily check with these dictionary tables:
DBA_ROLE_PRIVS (for roles granted to users)
ROLE_ROLE_PRIVS (roles granted to other roles)
DBA_TAB_PRIVS (table privileges granted to users or roles)
and much more but these are the main tables.

In a default DB installed, SYS and SYSTEM and DBAs.

Good Luck!
Doronla
0
 
LVL 17

Author Comment

by:k_murli_krishna
ID: 6309314
Dear doronia,
             Thanx. Please clarify my following doubts. I will give you A grade and the 30 points. You deserve it. The doubt is we are having DBA schemas here like system. Onsite in US they have normal users but they cannot reveal anymore details. If i grant connect,resource to schema then drop table is included. If i grant individually, then granting create table leads to alter and drop as well. I am not able to grant or revoke drop table. I am not able to grant create view,index etc. Please clarify.

K. Murli Krishna
0
 
LVL 17

Author Comment

by:k_murli_krishna
ID: 6343380
Dear doronla,
             I am going about accepting answers and grading them. We right now have given connect,resource. Is connect enough to run DDL, DML and TCL and grant/revoke them for all objects i.e. table etc. Please clarify on both of my comments.

with regards

( K. Murli Krishna )
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Why doesn't the Oracle optimizer use my index? Querying too much data Most Oracle developers know that an index is useful when you can use it to restrict your result set to a small number of the total rows in a table. So, the obvious side…
I remember the day when someone asked me to create a user for an application developement. The user should be able to create views and materialized views and, so, I used the following syntax: (CODE) This way, I guessed, I would ensure that use…
This video shows, step by step, how to configure Oracle Heterogeneous Services via the Generic Gateway Agent in order to make a connection from an Oracle session and access a remote SQL Server database table.
This video shows how to copy a database user from one database to another user DBMS_METADATA.  It also shows how to copy a user's permissions and discusses password hash differences between Oracle 10g and 11g.

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question